PoC Week 2024-02-11

The most featured CVEs in this week’s security newsletters, with public Proof-of-Concepts, ordered by mention count. For the most up-to-date and accurate info, visit the NIST links. Always audit PoCs thoroughly before running them. CVE-2024-21887 Severity: 9.1 CRITICAL Impacted Products: Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) Description: Command injection vulnerability allowing an authenticated administrator to execute arbitrary commands. Remediation: Apply mitigations per vendor instructions or discontinue use if mitigations unavailable.…