CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Ivanti: >> Zero Trust Access Security Vulnerabilities

CVE-2024-22024

An XML external entity or XXE vulnerability in the SAML component of Ivanti Connect Secure (9.x, 22.x), Ivanti Policy Secure (9.x, 22.x) and ZTA gateways which allows an attacker to access certain restricted resources without authentication.

CVSS Score

8.3

EPSS Score

0.943

Published

2024-02-13

Page 1

Vulnerabilities

Vulnerable Software

Ivanti: >> Zero Trust Access Security Vulnerabilities

Products

Pricing

Contact Us