← ExploitWatch
HomeExploited Vulnerabilities

CVE-2021-22893 — Actively Exploited: Pulse Connect Secure (Ivanti)

Ivanti Pulse Connect Secure contains a use-after-free vulnerability that allow a remote, unauthenticated attacker to execute code via license services.

CVE IDCVE-2021-22893
VendorIvanti
ProductPulse Connect Secure
Vulnerability nameIvanti Pulse Connect Secure Use-After-Free Vulnerability
Date added2021-11-03
Remediation due2022-05-03
Known ransomware useKnown
Required actionApply updates per vendor instructions.
DescriptionIvanti Pulse Connect Secure contains a use-after-free vulnerability that allow a remote, unauthenticated attacker to execute code via license services.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →