CVE-2024-13830 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Reflected XSS in Ivanti Connect Secure before version 22.7R2.6 and Ivanti Policy Secure before version 22.7R1.3 allows a remote unauthenticated attacker to obta…
Medium CVSS: 6.1

CVE-2024-13830

Reflected XSS in Ivanti Connect Secure before version 22.7R2.6 and Ivanti Policy Secure before version 22.7R1.3 allows a remote unauthenticated attacker to obtain admin privileges. User interaction is required.
Vendor
Ivanti
Product
Connect Secure
CWE
CWE-79
Yayın Tarihi
2025-02-11 16:15:39
Güncelleme
2025-02-13 17:09:11
Source Identifier
3c1d8aa1-5a33-4ea4-8992-aadd6440af75
KEV Date Added
-

Kategoriler

CWE-79 Connect Secure MEDIUM Ivanti 2025

Referanslar

https://forums.ivanti.com/s/article/February-Security-Advisory-Ivanti-Connect-Secure-ICS-Ivanti-Policy-Secure-IPS-and-Ivanti-Secure-Access-Client-ISAC-Multiple-CVEs