Home / Vulnerabilities / CVE-2024-9380
HIGH SEVERITY
CVE-2024-9380 Ivanti · Cloud Services Appliance (CSA)

Ivanti Cloud Services Appliance (CSA) OS Command Injection Vulnerability

Technical Severity

CVSS v3.1 Metrics

HIGH
7.2 / 10
Minimal Risk Critical
Vector Specification
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Exploitation Likelihood

EPSS Prediction

88.14 %
Predictive Probability
Percentile Rank
99.5 th

Documented as more likely to be exploited than 99.5% of known CVEs.

Detection Date

Oct 09, 2024

Remediation Due

Oct 30, 2024

CISA Catalog Active

Threat Analysis

Ivanti Cloud Services Appliance (CSA) contains an OS command injection vulnerability in the administrative console which can allow an authenticated attacker with application admin privileges to pass commands to the underlying OS.

Remediation Directive

As Ivanti CSA 4.6.x has reached End-of-Life status, users are urged to remove CSA 4.6.x from service or upgrade to the 5.0.x line, or later, of supported solution.

External Intelligence

https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-CSA-Cloud-Services-Appliance-CVE-2024-9379-CVE-2024-9380-CVE-2024-9381

https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-CSA-Cloud-Services-Appliance-CVE-2024-9379-CVE-2024-9380-CVE-2024-9381
NVD

National Vulnerability Database

https://nvd.nist.gov/vuln/detail/CVE-2024-9380