Description
Ivanti vTM has an authentication bypass vulnerability. An attacker can bypass the authentication with a specially crafted path and get access to the administrative interface.
Remediation
Upgrade to the latest version of Ivanti vTM
References
Related Vulnerabilities
Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-7932)
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-14540)
Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-7857)
Dot CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3688)