claytonvantol.us
SESSION: secure TLS: 1.3 PID: 1337

clayton@site:~/news$ cat cve-2021-22893-ivanti-pulse-connect-secure.log

CVE-2021-22893 — Ivanti Pulse Connect Secure Use-After-Free Vulnerability

2021-11-03 • CISA Known Exploited Vulnerability

[event] Ivanti Pulse Connect Secure contains a use-after-free vulnerability that allow a remote, unauthenticated attacker to execute code via license services.

> AFFECTED SOFTWARE

Field Value
Vendor Ivanti
Product Pulse Connect Secure
CWE CWE-287
CVE ID CVE-2021-22893
Date Added 2021-11-03
Due Date 2022-05-03
Ransomware Campaign Known — this vulnerability has been leveraged in ransomware campaigns

> MITIGATION

Apply updates per vendor instructions.

Due Date: 2022-05-03

> REFERENCES

← back to terminal

UPTIME: 1337d v2.0.1 privacy LAST LOGIN: 2026-05-30 20:36:16 UTC