Giters

raminkarimkhani1996 / CVE-2023-46805_CVE-2024-21887

The script in this repository only checks whether the vulnerabilities specified in the Ivanti Connect Secure product exist.

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

CVE-2023-46805_CVE-2024-21887

The script in this repository checks and exploits CVE-2023-46805 (Auth Bypass) and CVE-2024-21887 (Remote Code Execution) vulnerabilities specified in the Ivanti Connect Secure product exist. You can check vulnerability details this link (https://labs.watchtowr.com/welcome-to-2024-the-sslvpn-chaos-continues-ivanti-cve-2023-46805-cve-2024-21887/).

USAGE:

Base Usage: python3 CVE-2023-46805_CVE-2024-21887.py --url <URL_ADDRESS>

Proxy Usage: python3 CVE-2023-46805_CVE-2024-21887.py --url <URL_ADDRESS> --proxy <PROXY_ADDRESS>

Exploit Usage: python3 CVE-2023-46805_CVE-2024-21887.py --url <URL_ADDRESS> --cmd <OS_COMMAND>

About

The script in this repository only checks whether the vulnerabilities specified in the Ivanti Connect Secure product exist.

Languages

Language:Python 100.0%