cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-7593,https://securityvulnerability.io/vulnerability/CVE-2024-7593,Unauthorized Access to Ivanti vTM Admin Panel via Incorrect Authentication Algorithm,"The vulnerability CVE-2024-7593 affects the Ivanti Virtual Traffic Manager (vTM) due to an incorrect implementation of an authentication algorithm, allowing remote unauthenticated attackers to bypass authentication of the admin panel. This vulnerability can lead to unauthorized access and creation of rogue administrator accounts, potentially causing data theft, service interruptions, and compromise of sensitive systems. Ivanti has released patches for affected versions and recommend restricting access to the management interface and ensuring instances are updated to the latest available patch to prevent exploitation. While there is no evidence of active exploitation of this vulnerability, a proof of concept for it is publicly available. Users are advised to follow Ivanti's recommended workaround and upgrade their instances to the latest available patch.",Ivanti,Vtm,9.8,CRITICAL,0.972819983959198,true,true,false,true,true,false,false,2024-08-13T18:17:47.248Z,0