CVE-2023-38544

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Nov 15, 2023

Updated: Nov 22, 2023

Summary

CVE-2023-38544 is a newly identified vulnerability that allows logged-in users to manipulate certain files. This action could potentially result in unauthorized alterations to system-wide configuration settings, compromising the network's security and integrity. The impact of this issue extends beyond the affected system, as unintended changes to configuration settings could propagate to other connected systems. It is crucial for organizations to address this vulnerability promptly to minimize potential risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Ivanti Secure Access Client

Affected Vendors

Ivanti Software Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sDZgKi
https://www.cve.org/CVERecord?id=CVE-2023-38544
https://nvd.nist.gov/vuln/detail/CVE-2023-38544

Back to Vulnerability Database