CVE-2024-21893
CVE-2024-21893
In short
A flaw in the SAML component of Ivanti Connect Secure and Policy Secure allows attackers to make the server fetch restricted resources on their behalf without needing to log in. This bypasses access controls that should protect sensitive data.
Technical detail
Server-side request forgery (SSRF) in the SAML processing logic of Ivanti Connect Secure, Policy Secure, and Neurons for ZTA (versions 9.x, 22.x) enables unauthenticated attackers to force the server to request restricted resources. The vulnerability stems from insufficient validation of SAML-controlled requests, allowing access to protected endpoints and data without prior authentication.
Summary generated and translated by AI from the official description.
A server-side request forgery vulnerability in the SAML component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) and Ivanti Neurons for ZTA allows an attacker to access certain restricted resources without authentication.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
public PoCs found — 2
githubgithub.com/h4x0r-dz/CVE-2024-21893.py★ 94githubgithub.com/Chocapikk/CVE-2024-21893-to-CVE-2024-21887★ 27⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →