CVE-2024-37377

N/A

Descricao

A heap-based buffer overflow in IPsec of Ivanti Connect Secure before version 22.7R2.3 allows a remote unauthenticated attacker to cause a denial of service.

Detalhes CVE

Pontuacao CVSS v3.1N/A

Publicado12/12/2024

Ultima modificacao7/2/2025

Fontenvd

Avistamentos honeypot0

Produtos afetados

ivanti:connect_secureivanti:policy_secure

Fraquezas (CWE)

CWE-787

Referencias

https://forums.ivanti.com/s/article/December-2024-Security-Advisory-Ivanti-Connect-Secure-ICS-and-Ivanti-Policy-Secure-IPS-Multiple-CVEs(support@hackerone.com)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.