Ivanti – Page 2 – TheCyberThrone

Ivanti fixes critical vulnerability in EPM -CVE-2024-29847

Ivanti fixed a critical vulnerability in its Endpoint Management software (EPM) that can let attackers achieve remote code execution on the core server The vulnerability tracked as CVE-2024-29847 with a…

PravinKarthik September 12, 2024

Ivanti fixes Vulnerabilities in its ITSM Product

Ivanti has released patches for two vulnerabilities in its Neurons for IT Service Management (ITSM) platform, with potential risks ranging from unauthorized information disclosure to full system compromise. The first…

PravinKarthik August 14, 2024

Ivanti Vulnerability is Wide Spread – CVE-2024-21894

A recently patched Ivanti high-severity heap overflow vulnerability, tracked as CVE-2024-21894, could impact nearly 16,500 internet-exposed Ivanti Connect Secure, and Poly Secure VPN gateways. The maximum number of vulnerable Ivanti…

PravinKarthik April 8, 2024

Mandiant says Ivanti Zeroday Bugs Exploited in Wild

Two zero-day bugs in Ivanti products were likely under attack by cyberspies as early as December 2023. Ivanti disclosed the vulnerabilities in Ivanti Connect Secure. The VPN server appliance, previously…

PravinKarthik January 13, 2024

CISA KEV Update January 2024 – Part II

The U.S. CISA has added an Ivanti Connect Secure and Policy Secure flaws and Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog. Ivanti has reported that threat actors…

PravinKarthik January 11, 2024

Ivanti Discloses another Critical Vulnerability- CVE-2023-35082

Ivanti disclosed yet another new critical vulnerability in its MobileIron Core mobile device management software. Tracked as CVE-2023-35082, the flaw is a remote unauthenticated API access vulnerability affecting MobileIron Core…

PravinKarthik August 3, 2023

Ivanti Patches another high severity vulnerability

One another high severity vulnerability has been disclosed by Ivanti impacting Endpoint Manager Mobile (EPMM), which has been weaponized as part of an exploit chain by malicious actors in the…

PravinKarthik July 30, 2023

Ivanti Zeroday Exploited in Norwegian ministries Attack

Norwegian government authorities have revealed that a dozen government ministries had been targeted in a cyberattack involving a previously unknown vulnerability. Norway National Security Authority later clarified that the attack involved…

PravinKarthik July 25, 2023