Zero-Day Vulnerabilities Exploited in Ivanti CSA
/ 1 min read
🔍 Multiple zero-day vulnerabilities in Ivanti CSA exploited by advanced adversaries. Attackers are actively exploiting several critical vulnerabilities in Ivanti Cloud Services Appliance (CSA) that could allow unauthorized admin access, security bypass, and remote code execution. Key vulnerabilities include SQL injection and OS command injection, affecting versions prior to 5.0.2, as well as path traversal issues in earlier versions. Ivanti has released updates to address these vulnerabilities, and FortiGuard recommends applying these fixes while providing protection through their Web Filtering and Antivirus services. The FortiGuard Incident Response team is available to assist with any suspected compromises related to these threats.
