Vulnerability feed

Vulnerability

CVE-2021-44529

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2021-44529
Description:: A code injection vulnerability in the Ivanti EPM Cloud Services Appliance (CSA) allows an unauthenticated user to execute arbitrary code with limited permissions (nobody).
Last updated date:: 03/26/2024

Reports

alt

ACTIVELY EXPLOITED

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 03/25/2024
Reference url to background: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Type:: exploit
Confidence:: HIGH
Date of publishing:: 03/24/2022
Reference url to background: https://github.com/jkana/CVE-2021-44529

Type:: exploit
Confidence:: HIGH
Date of publishing:: 04/16/2022
Reference url to background: https://github.com/jax7sec/CVE-2021-44529

Type:: exploit
Confidence:: HIGH
Date of publishing:: 04/18/2022
Reference url to background: http://packetstormsecurity.com/files/166383/Ivanti-Endpoint-Manager-CSA-4.5-4.6-Remote-Code-Execution.html

Type:: exploit
Confidence:: HIGH
Date of publishing:: 01/09/2023
Reference url to background: https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/ivanti_csa_unauth_rce_cve_2021_44529.rb

Type:: exploit
Confidence:: HIGH
Date of publishing:: 02/02/2023
Reference url to background: http://packetstormsecurity.com/files/170590/Ivanti-Cloud-Services-Appliance-CSA-Command-Injection.html

Vulnerability Feed Contributors About Blog

@inTheWild

©2024 |