When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
In early January 2024, Ivanti said it uncovered and patchedtwo vulnerabilities found in its Connect Secure VPN products.
One is CVE-2024-21888, described as a privilege escalation flaw.
The latter, a zero-day, is a server-side vulnerability enabling hackers to access restricted resources, unauthenticated.
The company is also warning that the latter is being used in targeted attacks.
Ivanti and independent researchers also dont seem to be seeing eye-to-eye on the number of victims, as well.
