CVE-2024-9379CISA KEV: Actively Exploited

Ivanti Cloud Services Appliance (CSA) SQL Injection Vulnerability

Published Oct 9, 2024·Updated Oct 9, 2024

Description

Ivanti Cloud Services Appliance (CSA) contains a SQL injection vulnerability in the admin web console in versions prior to 5.0.2, which can allow a remote attacker authenticated as administrator to run arbitrary SQL statements.

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free