Skip to main content
  • Uncovering hidden threats by changing mindset

    Strengthening threat detection by generating Threat Intelligence

    Read More

  • Ransomware protection via patch management

    Prioritizing ransomware relevant patches for better protection.

    Read More

  • Ivanti Connect Secure VPN Vulnerabilities - saga continues

    Ivanti Connect Secure VPN - Vulnerability description continuation

    Read More

  • Ivanti Vulnerabilities Part 1

    Ivanti Connect Secure VPN - Vulnerability, Prevention, Detection, Patching

    Read More

slider image

Ivanti Connect Secure VPN Vulnerabilities - saga continues

In continuation with first part of blog post on vulnerabilities identified on Ivanti VPN products, that shook IT infra of many large organizations towards at the end of 2023, we will be looking at three more vulnerabilities that Ivanti further disclosed on 31st January and 21st February in this second and conclusive part of this blog post series.  

Ivanti Connect Secure VPN - Vulnerability, Prevention, Detection, Patching

Customers of Ivanti Connect Secure VPN had rough start of the year due to recently discovered high severity vulnerabilities that were already being exploited in the wild prior to being discovered by Security researchers. The combination of two vulnerabilities made overall discovery lethal for the users of Ivanti VPN servers. First one was an authentication bypass vulnerability whereas second allowed remote users to execute arbitrary code on VPN server. This post gives more information about the vulnerabilities, impact and mitigation techniques.