CVE-2023-46805

GPTKB entity

Statements (18)
Predicate Object
gptkbp:instanceOf CVE Identifier
gptkbp:affects gptkb:Ivanti_Connect_Secure
gptkb:Ivanti_Policy_Secure
gptkbp:describes An authentication bypass vulnerability in web components of Ivanti Connect Secure and Ivanti Policy Secure.
gptkbp:hasCVSSScore 8.2
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
gptkbp:hasCWE gptkb:CWE-287
gptkbp:hasExploitStatus Exploited in the wild
gptkbp:hasPatchAvailable Yes
gptkbp:hasSeverity High
https://www.w3.org/2000/01/rdf-schema#label CVE-2023-46805
gptkbp:publicDisclosure 2023-12-11
gptkbp:referencedIn https://nvd.nist.gov/vuln/detail/CVE-2023-46805
https://www.cisa.gov/news-events/alerts/2023/12/11/ivanti-connect-secure-and-policy-secure-vulnerabilities-exploited-wild
https://www.ivanti.com/blog/ivanti-connect-secure-and-ivanti-policy-secure-gateway-vulnerabilities
gptkbp:vulnerableTo gptkb:Authentication_Bypass
gptkbp:bfsParent gptkb:Pulse_Connect_Secure
gptkbp:bfsLayer 7