Ivanti Issues Critical Security Updates for CSA and Connect Secure Vulnerabilities
Ivanti Issues Critical Security Updates for CSA and Connect Secure Vulnerabilities
10 December 2024
Ivanti has released security updates to address multiple critical flaws in its Cloud Services Application (CSA) and Connect Secure products that could lead to privilege escalation and code execution.
The list of vulnerabilities is as follows -
CVE-2024-11639 (CVSS score: 10.0) - An authentication bypass vulnerability in the admin web console of Ivanti CSA before 5.0.3 that allows a remote