Threat Intelligence / CVE / CVE-2024-8963
CVE-2024-8963
CISA KEVPath Traversal in the Ivanti CSA before 4.6 Patch 519 allows a remote unauthenticated attacker to access restricted functionality.
CVSS v3 vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
Weaknesses (CWE)
CWE-22
Threats tracking this CVE
References
- https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-CSA-4-6-Cloud-Services-Appliance-CVE-2024-8963
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-8963
Full detection coverage & IOCs for threats exploiting CVE-2024-8963 are available via the Threadlinqs MCP server (Purple tier). View plans →