Ivanti warns of new Connect Secure zero-day exploited in attacks – Source: www.bleepingcomputer.com

Source: www.bleepingcomputer.com – Author: Sergiu Gatlan Today, Ivanti warned of two more vulnerabilities impacting Connect Secure, Policy Secure, and ZTA gateways, one of them a zero-day bug already under active exploitation. The zero-day flaw (CVE-2024-21893) is a server-side request forgery vulnerability in the gateways’ SAML component that enables attackers to bypass authentication and access restricted […]

La entrada Ivanti warns of new Connect Secure zero-day exploited in attacks – Source: www.bleepingcomputer.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.