Unauthorized Access to Ivanti vTM Admin Panel via Incorrect Authentication Algorithm

Summary

The vulnerability CVE-2024-7593 affects the Ivanti Virtual Traffic Manager (vTM) due to an incorrect implementation of an authentication algorithm, allowing remote unauthenticated attackers to bypass authentication of the admin panel. This vulnerability can lead to unauthorized access and creation of rogue administrator accounts, potentially causing data theft, service interruptions, and compromise of sensitive systems. Ivanti has released patches for affected versions and recommend restricting access to the management interface and ensuring instances are updated to the latest available patch to prevent exploitation. While there is no evidence of active exploitation of this vulnerability, a proof of concept for it is publicly available. Users are advised to follow Ivanti's recommended workaround and upgrade their instances to the latest available patch.

News Articles

eSecurity Planet

CVE-2024-38202CVE-2024-7593

Vulnerability Recap 8/19/24: Microsoft, Ivanti, SolarWinds

Microsoft appears on our list multiple times this week, with notable Patch Tuesday CVEs and an Entra ID vulnerability that affects hybrid clouds.

1 month ago

SC Media UK

CVE-2024-7593

Ivanti Warns Users to Patch Authentication Bypass Vulnerability

The vulnerability is due to an incorrect implementation of an authentication algorithm. Ivanti has urged users to patch a critical authentication bypass vulnerability.The flaw - tracked as...

1 month ago

CybersecurityNews

CVE-2024-7593

Ivanti Virtual Traffic Manager Flaw Let Hackers Create Rogue Admin Accounts

Ivanti Virtual Traffic Manager has been discovered with a critical vulnerability that was associated with an authentication bypass.

1 month ago

More News...