Cloud Threat Landscape
  • Incidents
  • Actors
  • Techniques
  • Defenses
  • Tools
  • Targeted Technologies
  • Posters & Newspapers
  • About
  • RSS
  • STIX
  • Back to wiz.io
Cloud Threat Landscape

Ivanti supply chain attack via compromised library

Type
Incident
Actors
❓Unknown
Pub. date
December 2, 2021
Initial access
Supply chain vector
Impact
Supply chain attack
Observed techniques
Package dependency confusion
References
https://www.labs.greynoise.io/grimoire/2024-02-what-is-this-old-ivanti-exploit/https://attackerkb.com/topics/XTKrwlZd7p/cve-2021-44529https://forums.ivanti.com/s/article/SA-2021-12-02https://packetstormsecurity.com/files/166383/Ivanti-Endpoint-Manager-CSA-4.5-4.6-Remote-Code-Execution.html
Status
Stub
Last edited
Mar 2, 2025 8:11 AM

Made with 💙 by Wiz

Last Updated: April 3, 2025