CVE-2023-46805CISA KEV: Actively Exploited

Ivanti Connect Secure and Policy Secure Authentication Bypass Vulnerability

Published Jan 10, 2024·Updated Jan 10, 2024

Description

Ivanti Connect Secure (ICS, formerly known as Pulse Connect Secure) and Ivanti Policy Secure gateways contain an authentication bypass vulnerability in the web component that allows an attacker to access restricted resources by bypassing control checks. This vulnerability can be leveraged in conjunction with CVE-2024-21887, a command injection vulnerability.

Public Exploits & PoCs12 found

PoC: CVE-2023-46805_CVE-2024-21887

An authentication bypass vulnerability in the web component of Ivanti ICS 9.x, 22.x and Ivanti Policy Secure allows a remote attacker to access restricted resources by bypassing control checks.

7

PoC: CVE-2023-46805

Ivanti Pulse Secure CVE-2023-46805 Scanner - Based on Assetnote's Research

3

PoC: CVE-2023-46805_CVE-2024-21887

The script in this repository only checks whether the vulnerabilities specified in the Ivanti Connect Secure product exist.

1

PoC: CVE-2023-46805

Simple scanner for scanning a list of ip-addresses for vulnerable Ivanti Pulse Secure devices

1

PoC: CVE-2023-46805_CVE-2024-21887_Scanner

Quick scanner for possible vulnerable Ivanti Connect Secure appliances by country using Shodan.

1

PoC: Ivanti-Secure-Connect-Logs-Parser

A Python script for examining Ivanti Secure Connect (ICS) event logs, designed to support investigations into vulnerabilities CVE-2025-0282, CVE-2023-46805, and CVE-2024-21887.

PoC: pulse-meter

Parses the System Snapshot from an Ivanti Connect Secure applicance to identify possible IOCs related to CVE-2023-46805, CVE-2024-21887 and CVE-2025-0282.

PoC: CVE-2023-46805

Ivanti ICS - Authentication Bypass

PoC: CVE-2023-46805

CVE-2023-46805 Ivanti POC RCE - Ultra fast scanner.

PoC: Ivanti-Connect-Around-Scan

Mitigation validation utility for the Ivanti Connect Around attack chain, comprising CVE-2023-46805 and CVE-2024-21887.

PoC: Check-Vulns-Script

Here is a script to check vulns CVE-2023-46805 and CVE-2024-21887

PoC: pulse-meter

Tool for checking the Ivanti Connect Secure System Snapshot for IOCs related to CVE-2023-46805 and CVE-2024-21887

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free