Skip to content
/ CVE-2023-46805_CVE-2024-21887 Public

The script in this repository only checks whether the vulnerabilities specified in the Ivanti Connect Secure product exist.

5 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

raminkarimkhani1996/CVE-2023-46805_CVE-2024-21887

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
CVE-2023-46805_CVE-2024-21887.py
CVE-2023-46805_CVE-2024-21887.py
 
 
README.md
README.md
 
 
poc.png
poc.png
 
 

Repository files navigation

CVE-2023-46805_CVE-2024-21887

The script in this repository checks and exploits CVE-2023-46805 (Auth Bypass) and CVE-2024-21887 (Remote Code Execution) vulnerabilities specified in the Ivanti Connect Secure product exist. You can check vulnerability details this link (https://labs.watchtowr.com/welcome-to-2024-the-sslvpn-chaos-continues-ivanti-cve-2023-46805-cve-2024-21887/).

USAGE:

Base Usage: python3 CVE-2023-46805_CVE-2024-21887.py --url <URL_ADDRESS>

Proxy Usage: python3 CVE-2023-46805_CVE-2024-21887.py --url <URL_ADDRESS> --proxy <PROXY_ADDRESS>

Exploit Usage: python3 CVE-2023-46805_CVE-2024-21887.py --url <URL_ADDRESS> --cmd <OS_COMMAND>

About

The script in this repository only checks whether the vulnerabilities specified in the Ivanti Connect Secure product exist.

Resources

Readme
Activity

Stars

5 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages