vulnerability
Ivanti Cloud Services Appliance: CVE-2024-8963: Improper Limitation of a Pathname to a Restricted Directory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 10 | (AV:N/AC:L/Au:N/C:C/I:C/A:P) | Sep 19, 2024 | Mar 11, 2025 | Mar 12, 2025 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:P)
Published
Sep 19, 2024
Added
Mar 11, 2025
Modified
Mar 12, 2025
Description
Path Traversal in the Ivanti CSA before 4.6 Patch 519 allows a remote unauthenticated attacker to access restricted functionality.
Solution
ivanti-cloud-services-appliance-upgrade-latest
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.