Authentication Bypass in Ivanti Connect Secure and Policy Secure (CVE-2023-46805)

Severity: High

Invicti detected Authentication Bypass vulnerability.

The Ivanti Connect Secure and Ivanti Policy Secure have an authentication bypass vulnerability.
An attacker can bypass the authentication with a specially crafted HTTP request
and get administrative access to the system.


An unauthenticated attacker can compromise the Ivanti Connect Secure / Policy Secure.


Upgrade to the latest version of Ivanti Connect Secure / Policy Secure

Build your resistance to threats. And save hundreds of hours each month.

Get a demo See how it works