CVE-2024-21894Out-of-bounds Write in Ivanti Connect Secure

CWE-787Out-of-bounds WriteCWE-703Improper Check or Handling of Exceptional Conditions8 documents7 sources
Severity
9.8CRITICALNVD
EPSS
11.0%
top 6.55%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Ivanti Connect SecureIvanti Policy Secure
Timeline
PublishedApr 4
Latest updateApr 5

Description

A heap overflow vulnerability in IPSec component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure allows an unauthenticated malicious user to send specially crafted requests in-order-to crash the service thereby causing a DoS attack. In certain conditions this may lead to execution of arbitrary code

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages4 packages

CVEListV5ivanti/policy_secure22.4R1.222.4R1.2+4
CVEListV5ivanti/connect_secure22.1R6.222.1R6.2+12
NVDivanti/policy_secure8 versions+7
NVDivanti/connect_secure7 versions+6

🔴Vulnerability Details

3
GHSA
GHSA-3mvj-7p7p-x4x5: A heap overflow vulnerability in IPSec component of Ivanti Connect Secure (92024-04-05
CVEList
CVE-2024-21894: A heap overflow vulnerability in IPSec component of Ivanti Connect Secure (92024-04-04
VulnCheck
Ivanti Connect Secure and Policy Secure Out-of-bounds Write2024

📋Vendor Advisories

1
Ivanti
Ivanti Connect Secure Heap Overflow

🕵️Threat Intelligence

3
Bleepingcomputer
New Ivanti RCE flaw may impact 16,000 exposed VPN gateways2024-04-05
Bleepingcomputer
Ivanti fixes VPN gateway vulnerability allowing RCE, DoS attacks2024-04-03
Greynoiseio
Storm Watch
CVE-2024-21894 — Out-of-bounds Write in Ivanti | cvebase