CVE-2024-21888

Vulnerability updated 6 months ago (2024-05-04T20:49:41.635Z)
Download STIX
Preview STIX
CVE-2024-21888 is a software vulnerability identified in Ivanti Connect Secure and Ivanti Policy Secure's Web component. This flaw, which presents as a privilege escalation vulnerability, was discovered during the rollout of updates for other vulnerabilities. Despite its potential severity, there have been no observed instances of this vulnerability being exploited in the wild at the time of disclosure. This vulnerability was disclosed alongside two others, CVE-2024-21893 and CVE-2024-21887, both of which had already seen active exploitation. CVE-2024-21893, a server-side request forgery flaw, has been used in targeted zero-day attacks. The news about these vulnerabilities followed closely on the heels of an Ivanti update that included fixes for these bugs, indicating a high level of threat activity associated with Ivanti products. In response to these findings, Ivanti began releasing patches for all the mentioned vulnerabilities, including CVE-2024-21888. Additionally, they provided a second mitigation aimed at enhancing resilience against attacks that chain CVE-2024-21893 with CVE-2024-21887 to compromise Ivanti devices. Organizations using Ivanti products are advised to apply these patches and mitigations promptly to reduce their risk exposure.
Description last updated: 2024-03-14T17:20:12.318Z
What's your take? (Question 1 of 2)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Aliases We are not currently tracking any aliases
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Ivanti
Vulnerability
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Associated Vulnerabilities
To see the evidence that has resulted in these vulnerability associations, create a free account
Alias DescriptionAssociation TypeVotes
The CVE-2024-21893 Vulnerability is associated with CVE-2024-21888. CVE-2024-21893 is a server-side request forgery (SSRF) vulnerability, a flaw in software design or implementation within Ivanti's products. This particular vulnerability has been exploited in targeted attacks as a zero-day, which means it was used by attackers before the vendor became aware of and pUnspecified
2
Source Document References
Information about the CVE-2024-21888 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
CERT-EU
8 months ago
DARKReading
7 months ago
CERT-EU
8 months ago
CERT-EU
8 months ago
CERT-EU
8 months ago
CERT-EU
8 months ago
CERT-EU
8 months ago
Securityaffairs
8 months ago
Checkpoint
8 months ago
CERT-EU
8 months ago
CERT-EU
8 months ago
Securityaffairs
8 months ago
CISA
8 months ago
InfoSecurity-magazine
9 months ago
DARKReading
9 months ago
Malwarebytes
9 months ago
InfoSecurity-magazine
9 months ago
Securityaffairs
9 months ago
Checkpoint
9 months ago
Malwarebytes
9 months ago