CVE-2024-21888

HIGH EXPLOITED

Ivanti Connect Secure - Improper Privilege Management

Title source: rule

Description

A privilege escalation vulnerability in web component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) allows a user to elevate privileges to that of an administrator.

Exploits (1)

metasploit WORKING POC EXCELLENT

by sfewer-r7 · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/ivanti_connect_secure_rce_cve_2024_21893.rb

View Code ZIP pw:eip

References (1)

[Vendor Advisory] https://forums.ivanti.com/s/article/CVE-2024-21888-Privilege-Escalation-for-Ivanti-Connect-Secure-and-Ivanti-Policy-Secure?language=en_US

Scores

CVSS v3 8.8

EPSS 0.6126

EPSS Percentile 98.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2024-02-29

CWE

CWE-269

Status published

Products (5)

ivanti/connect_secure 9.0 (13 CPE variants)

ivanti/connect_secure 9.1 r1 (34 CPE variants)

ivanti/connect_secure 21.9 r1

ivanti/connect_secure 21.12 r1

ivanti/connect_secure 22.1 r1

Published Jan 31, 2024

Tracked Since Feb 18, 2026