CVE-2024-21888Improper Privilege Management in Ivanti ICS

CWE-269Improper Privilege Management11 documents9 sources
Severity
8.8HIGHNVD
EPSS
61.3%
top 1.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Ivanti ICSIvanti IPSIvanti Connect Secure+1 more
Timeline
PublishedJan 31
Latest updateFeb 15

Description

A privilege escalation vulnerability in web component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) allows a user to elevate privileges to that of an administrator.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages4 packages

NVDivanti/policy_secure8 versions+7
NVDivanti/connect_secure9 versions+8
CVEListV5ivanti/ics9.1R189.1R18+1
CVEListV5ivanti/ips9.1R189.1R18+1

🔴Vulnerability Details

3
CVEList
CVE-2024-21888: A privilege escalation vulnerability in web component of Ivanti Connect Secure (92024-01-31
GHSA
GHSA-24gf-6m5f-h6pg: A privilege escalation vulnerability in web component of Ivanti Connect Secure (92024-01-31
VulnCheck
Ivanti Connect Secure Privilege Escalation2024

📋Vendor Advisories

1
Ivanti
Ivanti Connect Secure Privilege Escalation

🕵️Threat Intelligence

3
Bleepingcomputer
Over 13,000 Ivanti gateways vulnerable to actively exploited bugs2024-02-15
Wiz
Critical Vulnerabilities in Ivanti Exploited In-The-Wild | Wiz Blog2024-02-06
Unit42
Threat Brief: Multiple Ivanti Vulnerabilities (Updated Feb. 29)2024-01-16
CVE-2024-21888 — Improper Privilege Management | cvebase