Read more: securityonline.info
Multiple critical vulnerabilities have been discovered in Ivanti products, including Ivanti Avalanche, Ivanti Neurons, Ivanti Secure Access, and Ivanti EPM, posing a serious risk to organizations. These flaws allow attackers to potentially achieve remote code execution (RCE) and exfiltrate sensitive data from vulnerable systems. The vulnerabilities are linked to flaws in Ivanti’s handling of user input and access control mechanisms, enabling attackers to exploit these weaknesses to gain unauthorized access and compromise systems. Organizations using Ivanti products are strongly advised to patch their systems as soon as possible to mitigate these risks. Ivanti has released security advisories and updates for affected products. It’s essential to prioritize patching and implement other security best practices to safeguard against these vulnerabilities.