THREAT OPS › CVEs › CVE-2021-22899
CVE-2021-22899 — Ivanti Pulse Connect Secure Command Injection Vulnerability
Ivanti Pulse Connect Secure contains a command injection vulnerability that allows remote authenticated users to perform remote code execution via Windows File Resource Profiles.
Vulnerability details
- Affected productsPulse Connect Secure
- KEV remediation due2022-05-03