Ivanti Connect Secure (ICS, formerly known as Pulse Connect Secure) and Ivanti Policy Secure gateways contain an authentication bypass vulnerability in the web component that allows an attacker to access restricted resources by bypassing control checks. This vulnerability can be leveraged in conjunction with CVE-2024-21887, a command injection vulnerability.
PoC: CVE-2023-46805_CVE-2024-21887
An authentication bypass vulnerability in the web component of Ivanti ICS 9.x, 22.x and Ivanti Policy Secure allows a remote attacker to access restricted resources by bypassing control checks.
PoC: CVE-2023-46805
Ivanti Pulse Secure CVE-2023-46805 Scanner - Based on Assetnote's Research
PoC: CVE-2023-46805_CVE-2024-21887
The script in this repository only checks whether the vulnerabilities specified in the Ivanti Connect Secure product exist.
PoC: CVE-2023-46805
Simple scanner for scanning a list of ip-addresses for vulnerable Ivanti Pulse Secure devices
PoC: CVE-2023-46805_CVE-2024-21887_Scanner
Quick scanner for possible vulnerable Ivanti Connect Secure appliances by country using Shodan.
PoC: Ivanti-Secure-Connect-Logs-Parser
A Python script for examining Ivanti Secure Connect (ICS) event logs, designed to support investigations into vulnerabilities CVE-2025-0282, CVE-2023-46805, and CVE-2024-21887.
PoC: pulse-meter
Parses the System Snapshot from an Ivanti Connect Secure applicance to identify possible IOCs related to CVE-2023-46805, CVE-2024-21887 and CVE-2025-0282.
PoC: CVE-2023-46805
Ivanti ICS - Authentication Bypass
PoC: CVE-2023-46805
CVE-2023-46805 Ivanti POC RCE - Ultra fast scanner.
PoC: Ivanti-Connect-Around-Scan
Mitigation validation utility for the Ivanti Connect Around attack chain, comprising CVE-2023-46805 and CVE-2024-21887.
PoC: Check-Vulns-Script
Here is a script to check vulns CVE-2023-46805 and CVE-2024-21887
PoC: pulse-meter
Tool for checking the Ivanti Connect Secure System Snapshot for IOCs related to CVE-2023-46805 and CVE-2024-21887
Get alerted for CVEs like this
Register your stack and get notified within minutes when a matching CVE drops.
Start monitoring free