Exploitations de vulnérabilités dans Ivanti Cloud Services Appliance (CSA) - CERT-FR
Tags
| attack-pattern: | Data Cloud Services - T1021.007 Connection Proxy - T1090 Sudo - T1169 |
Common Information
| Type | Value |
|---|---|
| UUID | d0f6aa68-2485-45ce-a382-acc161a90b25 |
| Fingerprint | 6ff78f0eaca8a6ac |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Oct. 22, 2024, midnight |
| Added to db | Oct. 22, 2024, 5:50 p.m. |
| Last updated | Nov. 17, 2024, 9:42 p.m. |
| Headline | Objet: Exploitations de vulnérabilités dans Ivanti Cloud Services Appliance (CSA) |
| Title | Exploitations de vulnérabilités dans Ivanti Cloud Services Appliance (CSA) - CERT-FR |
| Detected Hints/Tags/Attributes | 20/1/25 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-013/ |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 283 | ✔ | CERT-FR | https://www.cert.ssi.gouv.fr/feed/ | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 85 | cve-2024-8190 |
|
| Details | CVE | 70 | cve-2024-8963 |
|
| Details | CVE | 41 | cve-2024-9380 |
|
| Details | CVE | 34 | cve-2024-9379 |
|
| Details | CVE | 29 | cve-2024-9381 |
|
| Details | Domain | 65 | www.cert.ssi.gouv.fr |
|
| Details | Domain | 571 | www.cve.org |
|
| Details | File | 131 | tar.gz |
|
| Details | File | 1205 | index.php |
|
| Details | File | 31 | users.php |
|
| Details | File | 5 | datetime.php |
|
| Details | File | 12 | reports.php |
|
| Details | File | 33 | php.ini |
|
| Details | File | 141 | www.cer |
|
| Details | Url | 4 | https://forums.ivanti.com/s/article/security-advisory-ivanti-cloud-service-appliance-csa-cve-2024-8190?language=en_us |
|
| Details | Url | 3 | https://forums.ivanti.com/s/article/security-advisory-ivanti-csa-4-6-cloud-services-appliance-cve-2024-8963?language=en_us |
|
| Details | Url | 1 | https://forums.ivanti.com/s/article/security-advisory-ivanti-csa-cloud-services-appliance-cve-2024-9379-cve-2024-9380-cve-2024-9381?language=en_us |
|
| Details | Url | 1 | https://www.fortinet.com/blog/threat-research/burning-zero-days-suspected-nation-state-adversary-targets-ivanti-csa |
|
| Details | Url | 6 | https://www.cert.ssi.gouv.fr/les-bons-reflexes-en-cas-dintrusion-sur-un-systeme-dinformation |
|
| Details | Url | 3 | https://www.cert.ssi.gouv.fr/fiche/certfr-2024-rfx-005 |
|
| Details | Url | 3 | https://www.cert.ssi.gouv.fr/fiche/certfr-2024-rfx-006 |
|
| Details | Url | 2 | https://www.cert.ssi.gouv.fr/avis/certfr-2024-avi-0796 |
|
| Details | Url | 1 | https://www.cert.ssi.gouv.fr/avis/certfr-2024-avi-0851 |
|
| Details | Url | 1 | https://www.cert.ssi.gouv.fr/actualite/certfr-2024-act-045 |
|
| Details | Url | 564 | https://www.cve.org/cverecord?id=cve |