SERVER-WEBAPP -- Snort has detected traffic exploiting vulnerabilities in web based applications on servers.
SERVER-WEBAPP Ivanti Cloud Services Appliance path traversal attempt
This rule looks for specially crafted requests sent to the "/client/index.php" endpoint on Ivanti Cloud Services Appliance web application that are intended to exploit a path traversal vulnerability.
This rule fires on attempts to exploit a path traversal vulnerability in the Ivanti Cloud Services Appliance web application.
Attacks/Scans seen in the wild
No known false positives
Cisco Talos Intelligence Group
MITRE::ATT&CK Framework::Enterprise::Initial Access::Exploit Public-Facing Application
Rule Categories::Server::Web Applications
Information Leak
Information Leakage happens when an attacker manipulates a system into revealing sensitive information, either through malformed input or by taking advantage of another feature of the system.
CVE-2024-8963 |
Loading description
|