![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjM5fDPWyq6JCkQyYRe2rmQUA3NZgFDI46rb6EIV-G9lp1xde_WomlCYc41Ov-yL4Y1n55dqPNY7i92ZbBPvjz0Ttz-1LAqaXtjfemfIVSOVBSHYZtHcXP55di08B6G72RD2FW7cgnNDbiajFpjVsp12dVb6XJOWeKDjezglmPsCaoHOti2ergqSVE949j5/s1600/ivanti.jpg)
Ivanti has alerted customers of yet another high-severity security flaw in its Connect Secure, Policy Secure, and ZTA gateway devices that could allow attackers to bypass authentication.
The issue, tracked as CVE-2024-22024, is rated 8.3 out of 10 on the CVSS scoring system.
“An XML external entity or XXE vulnerability in the SAML component of Ivanti Connect Secure (9.x, 22.x), Ivanti
Source:: The Hackers News