CVE ID
CVE-2024-8190
Vulnerability Name
Ivanti Cloud Services Appliance OS Command Injection Vulnerability
- Project: Ivanti
- Product: Cloud Services Appliance
Date
- Date Added: 2024-09-13
- Due Date: 2024-10-04
Description
Ivanti Cloud Services Appliance (CSA) contains an OS command injection vulnerability in the administrative console which can allow an authenticated attacker with application admin privileges to pass commands to the underlying OS.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
As Ivanti CSA has reached End-of-Life status, users are urged to remove CSA 4.6.x from service or upgrade to the 5.0.x line of supported solutions, as future vulnerabilities on the 4.6.x version of CSA are unlikely to receive future security updates.
Additional Notes
https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Cloud-Service-Appliance-CSA-CVE-2024-8190; https://nvd.nist.gov/vuln/detail/CVE-2024-8190
Related Security News
- Chinese Hackers Exploit Ivanti CSA Zero-Days in Attacks on French Government, Telecoms
- Over 70 Organizations Across Multiple Sectors Targeted by China-Linked Cyber Espionage Group
- Chinese Hackers Target Linux Systems Using SNOWLIGHT Malware and VShell Tool
- CISA: Ivanti Vulns Chained Together in Cyberattack Onslaught
- CISA: Hackers still exploiting older Ivanti bugs to breach networks
- Cisco Fixes Critical Privilege Escalation Flaw in Meeting Management (CVSS 9.9)
- Ivanti warns of maximum severity CSA auth bypass vulnerability
- Nation-State Attackers Exploiting Ivanti CSA Flaws for Network Infiltration
- Ivanti fixes three CSA zero-days exploited in the wild (CVE-2024-9379, CVE-2024-9380, CVE-2024-9381)
- Zero-Day Alert: Three Critical Ivanti CSA Vulnerabilities Actively Exploited
Top comments (0)