heise online

Ivanti: Critical code smuggling vulnerabilities in VPN and CSA

There are critical security leaks in Ivanti's VPN software ICS, IPS and ISAC as well as in Ivanti CSA. Attackers can plant malicious code. Ivanti warns of several security vulnerabilities, some of ...
heise online

Ivanti patcht Endpoint Manager, Avalanche, VPN- und NAC-Software

Ivanti has released security updates for several products, some of which close critical security vulnerabilities. Administrators should act quickly and apply the updates. For the mobile device ...
ITWire

iTWire - Volexity finds two zero-days being exploited in Ivanti Connect Secure VPN

Security firm Volexity says it has discovered active exploitation of two zero-day vulnerabilities in Ivanti Connect Secure VPN, with the two flaws being chained to allow an unauthenticated remote ...
CSOonline

US government agencies ordered to take Ivanti VPN products offline

CISA directive requires US federal agencies to remove the affected software by end of today due to actively exploited vulnerabilities. In January, Ivanti alerted customers that hackers were exploiting ...