Security Alert (A22-10-14): Multiple Vulnerabilities in Ivanti Connect Secure


 

Published on: 14 October 2022

  
  

Description:

Ivanti has published a security advisory to address multiple vulnerabilities in Ivanti Connect Secure.  The detailed information about the vulnerabilities can be found at:
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA45520

 

Affected Systems:

  • Ivanti Connect Secure prior to version 9.1R14.3, 9.1R15.2, 9.1R16.2, and 22.2R4

 

Impact:

A successful exploitation of the vulnerabilities could lead to denial of service on an affected system.

 

Recommendation:

Software updates for affected product are available. System administrators of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.

 

More Information:

  • https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA45520
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35254
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35258


Tag: Ivanti , Ivanti Connect Secure
Tags