CISA Known Exploited Vulnerability (KEV)
Ivanti Cloud Services Appliance OS Command Injection Vulnerability
September 13, 2024
October 4, 2024
As Ivanti CSA has reached End-of-Life status, users are urged to remove CSA 4.6.x from service or upgrade to the 5.0.x line of supported solutions, as future vulnerabilities on the 4.6.x version of CSA are unlikely to receive future security updates.
Description
An OS command injection vulnerability in Ivanti Cloud Services Appliance versions 4.6 Patch 518 and before allows a remote authenticated attacker to obtain remote code execution. The attacker must have admin level privileges to exploit this vulnerability.
References
Weakness Enumeration
| CWE-ID | CWE Name |
|---|---|
|
CWE-78 |
Improper Neutralization of Special Elements used in an OS Command (‘OS Command Injection’) |