File Modification Vulnerability in Ivanti Secure Access Client
CVE-2023-38544

5.3MEDIUM

Key Information:

Vendor
Ivanti
Status
Secure Access Linux
Vendor
CVE Published:
15 November 2023

Summary

A vulnerability exists in the Ivanti Secure Access Client that allows an authenticated user to alter specific files. This could lead to unintended changes in critical system-wide configuration settings, potentially jeopardizing the overall security and integrity of the affected network. Organizations must remain vigilant in managing access controls to mitigate the risks associated with this vulnerability.

Affected Version(s)

Secure Access Linux 22.6.1

References

https://forums.ivanti.com/s/article/Security-fixes-includ...

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
🍪 This website uses cookies, like every other website on the internet 😕 By using our website, you consent to the use of cookies.