Description:
Ivanti has published a security advisory to address multiple vulnerabilities in Ivanti Connect Secure. The detailed information about the vulnerabilities can be found at:
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA45520
Affected Systems:
- Ivanti Connect Secure prior to version 9.1R14.3, 9.1R15.2, 9.1R16.2, and 22.2R4
Impact:
A successful exploitation of the vulnerabilities could lead to denial of service on an affected system.
Recommendation:
Software updates for affected product are available. System administrators of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.
More Information:
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA45520
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35254
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35258
