Vulnerabilities > CVE-2024-47905 - Out-of-bounds Write vulnerability in Ivanti Connect Secure 22.7/7.1/7.4

047910
CVSS 4.9 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
HIGH
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
ivanti
CWE-787

Summary

A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure before version 22.7R1.2 allows a remote authenticated attacker with admin privileges to cause a denial of service.

Common Weakness Enumeration (CWE)