Security News > 2024 > October > Critical Ivanti RCE flaw with public exploit now used in attacks

Critical Ivanti RCE flaw with public exploit now used in attacks

2024-10-02 18:55

CISA warned today that a critical Ivanti vulnerability that can let threat actors gain remote code execution on vulnerable Endpoint Manager (EPM) appliances is now actively exploited in attacks. [...]

News URL

https://www.bleepingcomputer.com/news/security/critical-ivanti-rce-flaw-with-public-exploit-now-used-in-attacks/

#attack #critical #exploit #ivanti #RCE

Related news

Critical Veeam RCE bug now used in Frag ransomware attacks (source)
Palo Alto Networks warns of critical RCE zero-day exploited in attacks (source)
Critical RCE bug in VMware vCenter Server now exploited in attacks (source)
Exploit released for critical WhatsUp Gold RCE flaw, patch now (source)
PoC exploit for critical WhatsUp Gold RCE vulnerability released (CVE-2024-8785) (source)
Synology Urges Patch for Critical Zero-Click RCE Flaw Affecting Millions of NAS Devices (source)
VEILDrive Attack Exploits Microsoft Services to Evade Detection and Distribute Malware (source)
HPE warns of critical RCE flaws in Aruba Networking access points (source)
CISA warns of critical Palo Alto Networks bug exploited in attacks (source)
New Ymir Ransomware Exploits Memory for Stealthy Attacks; Targets Corporate Networks (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Ivanti		27	0	51	157	75	283

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.