Read more: informationsecuritybuzz.com
CISA has issued an urgent advisory regarding an actively exploited security vulnerability impacting Ivanti Virtual Traffic Manager (vTM), a widely deployed application delivery controller. The vulnerability, tracked as CVE-2024-7593, allows for unauthenticated remote code execution (RCE) and has been assigned a CVSS score of 9.8, indicating a critical severity level. Attackers are leveraging this flaw to gain unauthorized access to systems and potentially compromise critical infrastructure. Organizations using vulnerable versions of Ivanti vTM are strongly advised to apply the necessary patches and follow CISA’s recommendations to mitigate the risk.