Vulnerabilities > Ivanti > Connect Secure > 22.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-12-14 | CVE-2023-41719 | Unspecified vulnerability in Ivanti Connect Secure A vulnerability exists on all versions of Ivanti Connect Secure below 22.6R2 where an attacker impersonating an administrator may craft a specific web request which may lead to remote code execution. | 7.2 |
2023-12-14 | CVE-2023-41720 | Unspecified vulnerability in Ivanti Connect Secure A vulnerability exists on all versions of Ivanti Connect Secure below 22.6R2 where an attacker with a foothold on an Ivanti Connect Secure (ICS) appliance can escalate their privileges by exploiting a vulnerable installed application. | 7.8 |