CVE-2024-9420 - Vulnerability Details

A use-after-free in Ivanti Connect Secure before version 22.7R2.3 and 9.1R18.9

and Ivanti Policy Secure before version 22.7R1.2 allows a remote authenticated attacker to achieve remote code execution

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.27087.

Exploitation none

Automatable no

Technical Impact total

Vendors	Products
Ivanti Subscribe	Connect Secure Subscribe Policy Secure Subscribe

Configuration 1 [-]

OR	cpe:2.3:a:ivanti:connect_secure::::::::
	cpe:2.3:a:ivanti:connect_secure::::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:-::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r1::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r1.0::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r10::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r10.0::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r10.2::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r11::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r11.0::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r11.1::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r11.3::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r11.4::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r11.5::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r12::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r12.1::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r12.2::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r13::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r13.1::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r14::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r14.4::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r15::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r15.2::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r16::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r16.1::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r17::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r17.1::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r17.2::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r18::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r18.1::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r18.2::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r18.3::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r18.7::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r18.8::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r2::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r2.0::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r3::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r3.0::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r4::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r4.0::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r4.1::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r4.2::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r4.3::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r5::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r5.0::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r6::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r6.0::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r7::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r7.0::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r8::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r8.0::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r8.1::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r8.2::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r8.4::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r9::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r9.0::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r9.1::::::
	cpe:2.3:a:ivanti:connect_secure:9.1:r9.2::::::
	cpe:2.3:a:ivanti:connect_secure:22.7:-::::::
	cpe:2.3:a:ivanti:connect_secure:22.7:r1::::::
	cpe:2.3:a:ivanti:connect_secure:22.7:r1.1::::::
	cpe:2.3:a:ivanti:connect_secure:22.7:r1.2::::::
	cpe:2.3:a:ivanti:connect_secure:22.7:r1.3::::::
	cpe:2.3:a:ivanti:connect_secure:22.7:r1.4::::::
cpe:2.3:a:ivanti:connect_secure:22.7:r1.5::::::
cpe:2.3:a:ivanti:connect_secure:22.7:r2::::::
cpe:2.3:a:ivanti:connect_secure:22.7:r2.1::::::
cpe:2.3:a:ivanti:connect_secure:22.7:r2.2::::::
cpe:2.3:a:ivanti:policy_secure::::::::
cpe:2.3:a:ivanti:policy_secure:22.7:-::::::
cpe:2.3:a:ivanti:policy_secure:22.7:r1::::::
cpe:2.3:a:ivanti:policy_secure:22.7:r1.1::::::

No data.

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Connect-Secure-ICS-Ivanti-Policy-Secure-IPS-Ivanti-Secure-Access-Client-ISAC-Multiple-CVEs

History

Fri, 14 Mar 2025 00:45:00 +0900

Type	Values Removed	Values Added
Description	A use-after-free in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure before version 22.7R1.2 and 9.1R18.9 allows a remote authenticated attacker to achieve remote code execution	A use-after-free in Ivanti Connect Secure before version 22.7R2.3 and 9.1R18.9 and Ivanti Policy Secure before version 22.7R1.2 allows a remote authenticated attacker to achieve remote code execution

Sat, 18 Jan 2025 05:45:00 +0900

Type	Values Removed	Values Added
CPEs		cpe:2.3:a:ivanti:connect_secure:::::::: cpe:2.3:a:ivanti:connect_secure:22.7:-:::::: cpe:2.3:a:ivanti:connect_secure:22.7:r1.1:::::: cpe:2.3:a:ivanti:connect_secure:22.7:r1.2:::::: cpe:2.3:a:ivanti:connect_secure:22.7:r1.3:::::: cpe:2.3:a:ivanti:connect_secure:22.7:r1.4:::::: cpe:2.3:a:ivanti:connect_secure:22.7:r1.5:::::: cpe:2.3:a:ivanti:connect_secure:22.7:r1:::::: cpe:2.3:a:ivanti:connect_secure:22.7:r2.1:::::: cpe:2.3:a:ivanti:connect_secure:22.7:r2.2:::::: cpe:2.3:a:ivanti:connect_secure:22.7:r2:::::: cpe:2.3:a:ivanti:connect_secure:9.1:-:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r1.0:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r10.0:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r10.2:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r10:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r11.0:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r11.1:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r11.3:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r11.4:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r11.5:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r11:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r12.1:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r12.2:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r12:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r13.1:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r13:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r14.4:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r14:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r15.2:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r15:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r16.1:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r16:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r17.1:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r17.2:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r17:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r18.1:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r18.2:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r18.3:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r18.7:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r18.8:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r18:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r1:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r2.0:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r2:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r3.0:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r3:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r4.0:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r4.1:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r4.2:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r4.3:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r4:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r5.0:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r5:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r6.0:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r6:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r7.0:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r7:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r8.0:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r8.1:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r8.2:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r8.4:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r8:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r9.0:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r9.1:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r9.2:::::: cpe:2.3:a:ivanti:connect_secure:9.1:r9:::::: cpe:2.3:a:ivanti:policy_secure:22.7:-:::::: cpe:2.3:a:ivanti:policy_secure:22.7:r1.1:::::: cpe:2.3:a:ivanti:policy_secure:22.7:r1::::::

Thu, 28 Nov 2024 05:15:00 +0900

Type	Values Removed	Values Added
Description	A use-after-free in Ivanti Connect Secure before version 22.7R2.3 and 9.1R18.9 and Ivanti Policy Secure before version 22.7R1.2 allows a remote authenticated attacker to achieve remote code execution	A use-after-free in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure before version 22.7R1.2 and 9.1R18.9 allows a remote authenticated attacker to achieve remote code execution
Metrics		cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}`

Thu, 28 Nov 2024 06:30:00 +0900

Type	Values Removed	Values Added
Metrics	cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}`

Thu, 28 Nov 2024 05:30:00 +0900

Type	Values Removed	Values Added
Description	A use-after-free in Ivanti Connect Secure before version 22.7R2.3 and 9.1R18.9 and Ivanti Policy Secure before version 22.7R1.2 and 9.1R18.9 allows a remote authenticated attacker to achieve remote code execution	A use-after-free in Ivanti Connect Secure before version 22.7R2.3 and 9.1R18.9 and Ivanti Policy Secure before version 22.7R1.2 allows a remote authenticated attacker to achieve remote code execution

Sat, 23 Nov 2024 01:45:00 +0900

Type	Values Removed	Values Added
Description	A use-after-free in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure before version 22.7R1.2 allows a remote authenticated attacker to achieve remote code execution.	A use-after-free in Ivanti Connect Secure before version 22.7R2.3 and 9.1R18.9 and Ivanti Policy Secure before version 22.7R1.2 and 9.1R18.9 allows a remote authenticated attacker to achieve remote code execution

Wed, 13 Nov 2024 04:15:00 +0900

Type	Values Removed	Values Added
First Time appeared		Ivanti Ivanti connect Secure Ivanti policy Secure
CPEs		cpe:2.3:a:ivanti:connect_secure:-:::::::* cpe:2.3:a:ivanti:policy_secure::::::::
Vendors & Products		Ivanti Ivanti connect Secure Ivanti policy Secure
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 13 Nov 2024 01:15:00 +0900

Type	Values Removed	Values Added
Description		A use-after-free in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure before version 22.7R1.2 allows a remote authenticated attacker to achieve remote code execution.
Weaknesses		CWE-416
References		https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Connect-Secure-ICS-Ivanti-Policy-Secure-IPS-Ivanti-Secure-Access-Client-ISAC-Multiple-CVEs
Metrics		cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: ivanti

Published: 2024-11-12T15:57:24.947Z

Updated: 2025-03-13T15:31:10.970Z

Reserved: 2024-10-01T20:04:39.852Z

Link: CVE-2024-9420

Vulnrichment

Updated: 2024-11-12T18:34:43.747Z

NVD

Status : Modified

Published: 2024-11-12T16:15:26.760

Modified: 2025-03-13T16:15:25.893

Link: CVE-2024-9420

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-416

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Affected Vendors & Products

Projects

JSON object

JSON object

JSON object

JSON object

JSON object