CVE-2024-9379
- Reference to the description:
- Description:
- SQL injection in the admin web console of Ivanti CSA before version 5.0.2 allows a remote authenticated attacker with admin privileges to run arbitrary SQL statements.
- Last updated date:
- 10/10/2024
Reports
ACTIVELY EXPLOITED
- Type:
- exploitation
- Confidence:
- HIGH
- Date of publishing:
- 10/09/2024
- Reference url to background
https://www.cisa.gov/known-exploited-vulnerabilities-catalog