Ivanti Critical Vulnerabilities Under Active Exploitation (CVE-2023-46805, CVE-2024-21887)

On January 10th, 2024, Ivanti published a vulnerability report for two products: Ivanti Connect Secure and Ivanti Policy Secure Gateways.  The two vulnerabilities (CVE-2023-46805, CVE-2024-21887) are reported to be under active exploitation at this time, according to joint reporting from Volexity who discovered the attacks. 

Jan 24, 2024 - 1 Min Read