An authentication bypass in the admin web console of Ivanti CSA before 5.0.3 allows a remote unauthenticated attacker to gain administrative access
The vulnerability classified as CWE-288 (authentication bypass using alternate path) and CWE-306 (missing authentication for critical function) involves the ability to bypass authentication mechanisms in the administrative web console. An attacker can gain access to protected administrative functions without providing any credentials by exploiting an alternative path or missing identity verification mechanism. The attack is possible remotely over the network without requiring prior access to the system.
An attacker gains full administrative privileges to Ivanti CSA, enabling arbitrary configuration modifications, access to sensitive data, and potential compromise of confidentiality, integrity, and availability of the entire system.
Ivanti CSA must be immediately updated to version 5.0.3 or later. Detailed information is available in the official Ivanti security bulletin at the address indicated in the references. Until the patch is deployed, it is recommended to restrict access to the administrative web console only to trusted IP addresses using a firewall.
Ivanti Cloud Services Appliance (CSA) in versions before 5.0.3
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HIvanti Cloud Services Appliance
APPIvanti< 5.0.3
Related vulnerabilities
OS command injection w Ivanti CSA — RCE dla admina
Command injection w konsoli administracyjnej Ivanti CSA umożliwia RCE
SQL injection w konsoli administracyjnej Ivanti CSA — zdalne wykonanie zapytań SQL
An OS command injection vulnerability in Ivanti Cloud Services Appliance versions 4.6 Patch 518 and before all...
Default credentials in Ivanti Cloud Services Application before version 5.0.5 allows a local authenticated att...