Dark Reading

Third Ivanti Bug Comes Under Active Exploit, CISA Warns

The Cybersecurity and Infrastructure Security Agency (CISA) has added a third Ivanti vulnerability to the agency's Known Exploited Vulnerabilities (KEV) Catalog in as many weeks. CVE-2024-7593 is a ...
Yahoo Finance

CISA adds Ivanti Connect Secure vulnerability to KEV catalog

This story was originally published on Cybersecurity Dive. To receive daily news and insights, subscribe to our free daily Cybersecurity Dive newsletter. CISA on Friday added CVE-2025-22457, a ...
Dark Reading

CISA Adds High-Severity Ivanti Vulnerability to KEV Catalog

One of the latest vulnerabilities that the Cybersecurity and Infrastructure Security Agency has added to the Known Exploited Vulnerabilities Catalog is CVE-2024-29824, found in the Ivanti Endpoint ...
Bleeping Computer

CISA tags critical Ivanti EPM flaws as actively exploited in attacks

CISA warned U.S. federal agencies to secure their networks against attacks exploiting three critical vulnerabilities affecting Ivanti Endpoint Manager (EPM) appliances. On Monday, CISA added the three ...
TechRadar

Critical Ivanti Cloud Service Appliance flaw exploited in the wild

A critical path traversal vulnerability, recently discovered in Ivanti’s Cloud Service Appliance (CSA), is being actively exploited in the wild to grant access to restricted product functionalities.
Bleeping Computer

CISA: Hackers still exploiting older Ivanti bugs to breach networks

CISA and the FBI warned today that attackers are still exploiting Ivanti Cloud Service Appliances (CSA) security flaws patched since September to breach vulnerable networks. All four bugs have been ...