CVE-2024-8963

⚠ KEVEPSS 94.2%

Ivanti Cloud Services Appliance (CSA) Path Traversal Vulnerability

Added to CISA KEV: 9/19/2024

Description

Ivanti Cloud Services Appliance (CSA) contains a path traversal vulnerability that could allow a remote, unauthenticated attacker to access restricted functionality. If CVE-2024-8963 is used in conjunction with CVE-2024-8190, an attacker could bypass admin authentication and execute arbitrary commands on the appliance.

Affected packages (0)

No package mapping in OSV.