CVE-2024-22024
An XML external entity or XXE vulnerability in the SAML component of Ivanti Connect Secure (9.x, 22.x), Ivanti Policy Secure (9.x, 22.x) and ZTA...
Basic Information
- CVE State
- PUBLISHED
- Reserved Date
- January 04, 2024
- Published Date
- February 13, 2024
- Last Updated
- August 01, 2024
- Vendor
- Ivanti, Ivant
- Product
- ICS, IPS
- Description
- An XML external entity or XXE vulnerability in the SAML component of Ivanti Connect Secure (9.x, 22.x), Ivanti Policy Secure (9.x, 22.x) and ZTA gateways which allows an attacker to access certain restricted resources without authentication.
CVSS Scores
CVSS v3.0
8.3 - HIGH
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
EPSS Score
- Score
- 94.32% (Percentile: 99.94%) as of 2025-04-29
Exploit Status
- Exploited in the Wild
- Yes (added 2025-04-28 00:00:00 UTC) Source
Known Exploited Vulnerability Information
| Source | Added Date |
|---|---|
| The Shadowserver (via CIRCL) | 2025-04-28 00:00:00 UTC |
Scanner Integrations
| Scanner | URL | Date Detected |
|---|---|---|
| Nuclei | https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2024/CVE-2024-22024.yaml | 2025-04-26 00:00:00 UTC |
Potential Proof of Concepts
Warning: These PoCs have not been tested and could contain malware. Use at your own risk.
0dteam/CVE-2024-22024
Type: github • Created: 2024-02-09 14:31:56 UTC • Stars: 30
Check for CVE-2024-22024 vulnerability in Ivanti Connect Secure