Source: Alerts Author: CISA URL: https://www.cisa.gov/news-events/alerts/2024/12/10/ivanti-releases-security-updates-multiple-products

ONE SENTENCE SUMMARY:

Ivanti released security updates addressing vulnerabilities in multiple services, urging users to review advisories and apply updates.

MAIN POINTS:

1. Ivanti issued updates for security vulnerabilities in its Cloud Service Application.
2. Vulnerabilities have also been addressed in Ivanti Desktop and Server Management (DSM).
3. Security patches are available for Ivanti Connect Secure and Policy Secure.
4. Ivanti Sentry was included in the latest security updates.
5. Updates impact the Ivanti Patch SDK, affecting various related products.
6. Ivanti Endpoint Manager (EPM) is influenced by the Patch SDK updates.
7. Users are encouraged to review relevant advisories from Ivanti.
8. CISA highlights the importance of applying necessary guidance from Ivanti.
9. Ivanti Neurons Agent is one of the affected applications by the updates.
10. Immediate action is suggested to mitigate potential security risks.

TAKEAWAYS:

1. Regularly check for security updates from Ivanti to maintain system security.
2. Review advisories to understand the implications and required actions.
3. Update all affected Ivanti products promptly to protect against vulnerabilities.
4. Stay informed about security advisories issued by organizations like CISA.
5. Ensure proper configurations of Ivanti services to maximize security.