One more time - Ivanti publishes warning about another vulnerability

published: Feb. 8, 2024

Take action: It's possible that you have already fixed this issue if you did the patch and mitigation at the end of January 2024. Check the vendor advisory and detail and your Ivanti infrastructure. If you are behind on patches, patch ASAP and do the factory reset - it's quite possible you are already hacked.

Learn More

Ivanti has issued another urgent advisory about a vulnerability identified in several of its products. The vulnerability, tracked as CVE-2024-22024 (CVSS score 8.3), affects:

  • Ivanti Connect Secure,
  • Ivanti Policy Secure,
  • ZTA gateways.

This security flaw enables attackers to access certain restricted resources without needing authentication. Although Ivanti has stated there is no evidence of exploitation in the wild, the company advises propmpt patching.

Ivanti is already struggling with multiple vulnerabilities reported in the past month that are already actively exploited by cybercriminals and state-backed espionage actors.

A patch is available for Ivanti Connect Secure (versions 9.1R14.5, 9.1R17.3, 9.1R18.4, 22.4R2.3, 22.5R1.2, 22.5R2.3 and 22.6R2.2), Ivanti Policy Secure (versions 9.1R17.3, 9.1R18.4 and 22.5R1.2) and ZTA gateways (versions 22.5R1.6, 22.6R1.5 and 22.6R1.7). For users who have applied the patch released on January 31 or February 1, and have completed a factory reset of their appliance, no further factory reset is necessary for this specific vulnerability.

One more time - Ivanti publishes warning about another vulnerability