An out-of-bounds write in IPsec of Ivanti Connect Secure before version 22.7R2.1 allows a remote unauthenticated attacker to cause a denial of service.
Metrics
Affected Vendors & Products
References
History
Wed, 13 Nov 2024 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Ivanti
Ivanti connect Secure |
|
Weaknesses | CWE-125 | |
CPEs | cpe:2.3:a:ivanti:connect_secure:-:*:*:*:*:*:*:* | |
Vendors & Products |
Ivanti
Ivanti connect Secure |
|
Metrics |
ssvc
|
Wed, 13 Nov 2024 02:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | An out-of-bounds write in IPsec of Ivanti Connect Secure before version 22.7R2.1 allows a remote unauthenticated attacker to cause a denial of service. | |
References |
| |
Metrics |
cvssV3_0
|
MITRE
Status: PUBLISHED
Assigner: hackerone
Published: 2024-11-13T01:54:45.457Z
Updated: 2024-11-13T17:03:52.122Z
Reserved: 2024-06-19T01:04:07.137Z
Link: CVE-2024-38649
Vulnrichment
Updated: 2024-11-13T17:03:31.544Z
NVD
Status : Awaiting Analysis
Published: 2024-11-13T02:15:18.337
Modified: 2024-11-13T17:35:05.697
Link: CVE-2024-38649
Redhat
No data.