module
Ivanti Virtual Traffic Manager Authentication Bypass (CVE-2024-7593)
| Disclosed |
|---|
| Aug 5, 2024 |
Disclosed
Aug 5, 2024
Description
This module exploits an access control issue in Ivanti Virtual Traffic Manager (vTM), by adding a new
administrative user to the web interface of the application.
Affected versions include 22.7R1, 22.6R1, 22.5R1, 22.3R2, 22.3, 22.2.
administrative user to the web interface of the application.
Affected versions include 22.7R1, 22.6R1, 22.5R1, 22.3R2, 22.3, 22.2.
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.