Security News > 2024 > December > Ivanti warns of maximum severity CSA auth bypass vulnerability

Ivanti warns of maximum severity CSA auth bypass vulnerability

2024-12-10 19:40

Ivanti warned customers on Tuesday about a new maximum-severity authentication bypass vulnerability in its Cloud Services Appliance (CSA) solution. [...]

News URL

https://www.bleepingcomputer.com/news/security/ivanti-warns-of-maximum-severity-csa-auth-bypass-vulnerability/

#bypass #ivanti #vulnerability

Related news

Moxa Issues Fix for Critical Authentication Bypass Vulnerability in PT Switches (source)
Critical Next.js Vulnerability Allows Attackers to Bypass Middleware Authorization Checks (source)
Critical Next.js auth bypass vulnerability opens web apps to compromise (CVE-2025-29927) (source)
Ivanti VPN customers targeted via unrecognized RCE vulnerability (CVE-2025-22457) (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Ivanti		29	1	56	184	81	322

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.