Main Vulnerability Database Exploits ID:10510 - Exploit for OS Command Injection in Ivanti Cloud Services Appliance (CSA) - CVE-2024-8190

ID:10510 - Exploit for OS Command Injection in Ivanti Cloud Services Appliance (CSA) - CVE-2024-8190

Published: September 20, 2024

Vulnerability identifier: #VU97119

Vulnerability risk: Critical

CVE-ID: CVE-2024-8190

CWE-ID: CWE-78

Exploitation vector: Remote access

Vulnerable software:
Ivanti Cloud Services Appliance (CSA)

Link to public exploit:

https://github.com/horizon3ai/CVE-2024-8190

Vulnerability description

The vulnerability allows a remote user to execute arbitrary shell commands on the target system.

The vulnerability exists due to improper input validation. A remote privileged user can pass specially crafted data to the application and execute arbitrary OS commands on the target system.

Note, the vulnerability is being actively exploited in the wild as of September 13 in conjunction with #VU97617 (CVE-2024-8963), which leads to remote unauthenticated code execution.

Remediation

Install updates from vendor's website.

ID:10510 - Exploit for OS Command Injection in Ivanti Cloud Services Appliance (CSA) - CVE-2024-8190

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human