Security for everyone

CVE-2024-21887 Scanner

This scanner is designed to detect the CVE-2024-21887 vulnerability, a critical command injection flaw in Ivanti Connect Secure and Ivanti Policy Secure. It identifies systems at risk of allowing authenticated administrators to execute arbitrary commands, ensuring timely mitigation to protect your network.

SCAN NOW

Short Info


Level

Critical

Type

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Domain, Ipv4

Parent Category

CVE-2024-21887 Scanner Detail

Affected Software Overview:

Product: Ivanti Connect Secure and Ivanti Policy Secure
Vulnerable Versions: Versions 9.x, 22.x
Usage: These products are utilized for secure network connectivity and policy enforcement across various industries, playing a crucial role in secure remote access and network security. Given their widespread application in securing enterprise networks, the CVE-2024-21887 vulnerability poses a significant risk, necessitating immediate attention.

Vulnerability Details:

CVE-2024-21887 is a command injection vulnerability located in the web components of Ivanti Connect Secure and Ivanti Policy Secure, versions 9.x and 22.x. This flaw allows an authenticated administrator to send specially crafted requests to execute arbitrary commands on the appliance, potentially leading to unauthorized actions and data compromise.

Severity: Critical
CVSS Score: 9.1
CVE ID: CVE-2024-21887
CWE ID: CWE-77

The Significance of Mitigating CVE-2024-21887

Mitigating CVE-2024-21887 is critical to prevent the execution of unauthorized commands that could compromise the security and integrity of networks utilizing Ivanti Connect Secure and Ivanti Policy Secure. Organizations must promptly identify and secure affected versions to safeguard against potential exploits.

Why SecurityForEveryone?

SecurityForEveryone provides a comprehensive approach to cybersecurity, offering targeted vulnerability scanners like the CVE-2024-21887 Scanner. Our platform ensures organizations can effectively detect and mitigate critical vulnerabilities, enhancing their overall security posture with up-to-date protections against evolving threats. With SecurityForEveryone, you gain access to expert insights and tools necessary for maintaining robust security defenses in an increasingly complex digital landscape.

cyber security services for everyone one. Free security tools, continuous vulnerability scanning and many more.
Try it yourself,
control security posture