cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-11773,https://securityvulnerability.io/vulnerability/CVE-2024-11773,Advanced SQL Injection Vulnerability in Ivanti CSA,"A vulnerability exists in the admin web console of the Ivanti Cloud Services Application prior to version 5.0.3, wherein remote authenticated attackers with admin privileges can exploit an SQL injection flaw. This weakness allows attackers to execute arbitrary SQL statements against the underlying database, potentially compromising data integrity and security. Ensuring timely updates and implementing strict access controls are essential measures to mitigate risks associated with this vulnerability.",Ivanti,Cloud Services Application,9.1,CRITICAL,0.0004299999854993075,false,false,false,false,,false,false,2024-12-10T18:56:08.742Z,0
CVE-2024-11772,https://securityvulnerability.io/vulnerability/CVE-2024-11772,Remote Code Execution Vulnerability in Ivanti CSABefore Version 5.0.3,"A command injection vulnerability exists in the admin web console of Ivanti Cloud Services Application prior to version 5.0.3. This issue enables a remote authenticated attacker, who possesses administrative privileges, to execute arbitrary code on affected systems. As a result, attackers could exploit this vulnerability to gain unauthorized access or control over sensitive data and processes, potentially leading to severe security breaches.",Ivanti,Cloud Services Application,9.1,CRITICAL,0.0004299999854993075,false,true,false,false,,false,false,2024-12-10T18:55:44.312Z,0
CVE-2024-11639,https://securityvulnerability.io/vulnerability/CVE-2024-11639,Admin Web Console Vulnerability Allows Remote Administrative Access,"An identified vulnerability in Ivanti Cloud Services Application (CSA) pertains to an authentication bypass flaw in the admin web console. This issue allows remote attackers, who do not have authentication credentials, to gain administrative access to the system. The vulnerability affects versions of Ivanti CSA prior to 5.0.3, posing a significant security risk as it enables potential unauthorized operations and control over the affected application. Organizations using vulnerable versions should prioritize updating their systems to mitigate this exploit, as the flaw can seriously compromise the integrity of their applications and data.",Ivanti,Cloud Services Application,10,CRITICAL,0.0004299999854993075,false,true,false,false,,false,false,2024-12-10T18:54:43.368Z,0