Virtual Traffic Manager

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2024-7593 CRITICAL KEV PATCH THREAT Act Now

Authentication bypass in Ivanti Virtual Traffic Manager (vTM) admin panel allows remote unauthenticated attackers to gain administrative access to the appliance due to a flawed authentication algorithm implementation. The flaw is confirmed actively exploited (CISA KEV) with an EPSS score of 94.44% (100th percentile), placing it among the highest-risk vulnerabilities currently tracked. All vTM releases other than 22.2R1 and 22.7R2 are affected.

Authentication Bypass Ivanti Virtual Traffic Manager

NVD

CVSS 3.1

9.8

EPSS

94.4%

Threat

6.3

CVE-2024-7593

EPSS 94% 6.3 CVSS 9.8

CRITICAL KEV PATCH THREAT Act Now

Authentication bypass in Ivanti Virtual Traffic Manager (vTM) admin panel allows remote unauthenticated attackers to gain administrative access to the appliance due to a flawed authentication algorithm implementation. The flaw is confirmed actively exploited (CISA KEV) with an EPSS score of 94.44% (100th percentile), placing it among the highest-risk vulnerabilities currently tracked. All vTM releases other than 22.2R1 and 22.7R2 are affected.

Authentication Bypass Ivanti Virtual Traffic Manager

NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy