Ivanti released security updates to address multiple vulnerabilities in Ivanti Virtual Traffic Manager (vTM), Neurons for ITSM, and Avalanche. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. Ivanti advises users to reduce their attack surface and follow industry best practices by adhering to Ivanti's network configuration guidance and restrict access to the management interface.
CERT Bulgaria encourages users and administrators to review the following Ivanti advisories and apply the necessary updates: