Ivanti Connect Secure VPN Vulnerability: What You Should Know
by Michael Teske and Bri Frost
Q&A session discussing the Ivanti Connect Secure VPN Vulnerabilities, covering CVE-2023-46805 (authentication bypass) and CVE-2024-21887 (RCE/command injection).
What you'll learn
This course covers a Q&A session discussing the Ivanti Connect Secure VPN Vulnerabilities, covering CVE-2023-46805 (authentication bypass) and CVE-2024-21887 (command injection). We will cover what it is, why it’s such a critical and widespread vulnerability that can exist in a multitude of systems, and how to identify if you’ve been affected.
About the authors
Michael Teske is a principal security author with Pluralsight helping people build their skills toolkit. Michael has 25+ years of experience in the IT Ops/Cloud/Cybersecurity industry including 17 of those years as an IT instructor at a technical college, focusing on Microsoft server infrastructure, security and automation. Michael attained his MBA with an emphasis in Computer Information System Security several years ago. Michael still keeps up with the industry as an independent consultant in ... morehis spare time. Michael finds personal and professional growth by helping others discover the world of technology by sharing his passion as a tech enthusiast in all aspects. He understands the worker shortage in the cybersecurity space and continues to be an advocate for an industry that has provided a fulfilling career for himself.
Bri is a renowned expert with 7 years of experience in the field of Cybersecurity and IT, bringing a unique perspective to the table. As the Director of Security Curriculum and Research at Pluralsight, Bri is instrumental in developing the cutting-edge cybersecurity curriculum and content strategy. With a wealth of knowledge as an author of Pluralsight training content, she infuses a "red-team" or attacker-focused mindset into her teachings to grasp security concepts and defense strategies effec... moretively.
Bri holds a bachelor's degree in InfoSystems and Technologies and is certified with Security+ and Pentest+ credentials.