CVE-2024-7593: Ivanti Virtual Traffic Manager...

CVE-2024-7593: Ivanti Virtual Traffic Manager Authentication Bypass Vulnerability

On August 13, Ivanti released a security advisory to address a critical severity authentication bypass vulnerability in its Virtual Traffic Manager (vTM) product, a software-based application delivery controller (ADC).

The vulnerability tracked as CVE-2024-7593 is an authentication bypass vulnerability that, if exploited, could allow a remote attacker with no prior authentication to create an administrator user account. Ivanti noted in their advisory the availability of public exploit code but are not aware of customers being exploited prior to the disclosure of the vulnerability.

For more information about the vulnerability, including the availability of patches and Tenable product coverage, please visit our blog.

Cyber Exposure Alerts

Vulnerability Watch

Forum Discussion

CVE-2024-7593: Ivanti Virtual Traffic Manager...

Recent Discussions

FAQ on Exploited Zero-Day Flaws in Cisco ASA and FTD Devices (CVE-2025-20333, CVE-2025-20362)

Microsoft’s September 2025 Patch Tuesday Addresses 80 CVEs (CVE-2025-55234)

Frequently Asked Questions About Chinese State-Sponsored Actors Compromising Global Networks

CVE-2025-7775: Citrix NetScaler ADC and Gateway Zero-Day RCE Vulnerability Exploited in the Wild

CVE-2025-25256: Proof of Concept Released for Fortinet FortiSIEM Command Injection Vulnerability

Americas

Europe

Asia / Australia