Statements (18)
Predicate | Object |
---|---|
gptkbp:instanceOf |
CVE Identifier
|
gptkbp:affects |
gptkb:Ivanti_Connect_Secure
gptkb:Ivanti_Policy_Secure |
gptkbp:describes |
An authentication bypass vulnerability in web components of Ivanti Connect Secure and Ivanti Policy Secure.
|
gptkbp:hasCVSSScore |
8.2
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
gptkbp:hasCWE |
gptkb:CWE-287
|
gptkbp:hasExploitStatus |
Exploited in the wild
|
gptkbp:hasPatchAvailable |
Yes
|
gptkbp:hasSeverity |
High
|
https://www.w3.org/2000/01/rdf-schema#label |
CVE-2023-46805
|
gptkbp:publicDisclosure |
2023-12-11
|
gptkbp:referencedIn |
https://nvd.nist.gov/vuln/detail/CVE-2023-46805
https://www.cisa.gov/news-events/alerts/2023/12/11/ivanti-connect-secure-and-policy-secure-vulnerabilities-exploited-wild https://www.ivanti.com/blog/ivanti-connect-secure-and-ivanti-policy-secure-gateway-vulnerabilities |
gptkbp:vulnerableTo |
gptkb:Authentication_Bypass
|
gptkbp:bfsParent |
gptkb:Pulse_Connect_Secure
|
gptkbp:bfsLayer |
7
|