{"id":2991,"date":"2024-02-02T12:27:31","date_gmt":"2024-02-02T04:27:31","guid":{"rendered":"https:\/\/blog.billows.com.tw\/?p=2991"},"modified":"2024-02-02T12:27:31","modified_gmt":"2024-02-02T04:27:31","slug":"%e5%8f%b2%e7%84%a1%e5%89%8d%e4%be%8b-%e7%be%8e%e5%9c%8bcisa%e4%b8%8b%e4%bb%a4%e8%81%af%e9%82%a6%e6%a9%9f%e6%a7%8b%e7%b7%8a%e6%80%a5%e5%9c%a848%e5%b0%8f%e6%99%82%e5%85%a7%e6%96%b7%e9%96%8bivanti-vpn","status":"publish","type":"post","link":"https:\/\/blog.billows.com.tw\/?p=2991","title":{"rendered":"\u53f2\u7121\u524d\u4f8b \u7f8e\u570bCISA\u4e0b\u4ee4\u806f\u90a6\u6a5f\u69cb\u7dca\u6025\u572848\u5c0f\u6642\u5167\u65b7\u958bIvanti VPN \u8a2d\u5099\u7684\u9023\u63a5"},"content":{"rendered":"\n
\"\"
Photo Credit: CISA<\/figcaption><\/figure>\n\n\n\n

\u70ba\u4e86\u61c9\u5c0d\u53d7\u5165\u4fb5\u7684 Ivanti VPN \u8a2d\u5099\u9020\u6210\u7684\u91cd\u5927\u5a01\u8105\u548c\u91cd\u5927\u5b89\u5168\u6f0f\u6d1e\u98a8\u96aa\uff0cCISA\u63a1\u53d6\u4e86\u53f2\u7121\u524d\u4f8b\u7684\u8209\u63aa\uff0c\u8981\u6c42\u806f\u90a6\u6a5f\u69cb\u572848 \u5c0f\u6642\u5167\u65b7\u958b Ivanti Connect Secure \u548c Ivanti Policy Secure \u7522\u54c1\u7684\u6240\u6709\u5be6\u4f8b\u3002<\/p>\n\n\n\n

CISA <\/a>\u5df2\u547d\u4ee4\u7f8e\u570b\u806f\u90a6\u6a5f\u69cb\u5728\u5468\u516d\u4e4b\u524d\u65b7\u958b\u6240\u6709\u6613\u53d7\u591a\u500b\u6d3b\u8e8d\u6f0f\u6d1e\u653b\u64ca\u7684 Ivanti Connect Secure <\/a>\u548c Policy Secure VPN \u8a2d\u5099\u7684\u9023\u7dda\u3002\u8a72\u6a5f\u69cb\u5728\u4e00\u4efd\u65b0\u7684\u7dca\u6025\u6307\u4ee4<\/a>\u4e2d\u8868\u793a\uff1a\u201c\u76e1\u5feb\u4e14\u4e0d\u665a\u65bc2024 \u5e742 \u67082 \u65e5\u661f\u671f\u4e94\u665a\u4e0a11:59\uff0c\u65b7\u958b\u6240\u6709Ivanti Connect Secure \u548cIvanti Policy Secure \u89e3\u6c7a\u65b9\u6848\u7522\u54c1\u5be6\u4f8b\u8207\u6a5f\u69cb\u7db2\u8def\u7684\u9023\u63a5\u201d \uff0c\u8a72\u6307\u4ee4\u52a0\u5927\u4e86\u58d3\u529b\u5e6b\u52a9\u9632\u79a6\u8005\u7de9\u89e3\u81f3\u5c11\u4e09\u500b\u5728\u88ab\u7a4d\u6975\u5229\u7528\u7684 Ivanti \u5b89\u5168\u6f0f\u6d1e\u3002<\/p>\n\n\n\n

CISA \u6b63\u5728\u63a8\u52d5\u806f\u90a6\u6c11\u4e8b\u884c\u653f\u90e8\u9580 (FCEB) \u6a5f\u69cb\u201c\u7e7c\u7e8c\u5c0d\u9023\u63a5\u5230\u6216\u6700\u8fd1\u9023\u63a5\u5230\u53d7\u5f71\u97ff\u7684 Ivanti \u8a2d\u5099\u7684\u4efb\u4f55\u7cfb\u7d71\u9032\u884c\u5a01\u8105\u641c\u5c0b\u201d\uff0c\u4e26\u76e3\u63a7\u53ef\u80fd\u66b4\u9732\u7684\u8eab\u4efd\u9a57\u8b49\u6216\u8eab\u4efd\u7ba1\u7406\u670d\u52d9\u3002\u8a72\u6a5f\u69cb\u8868\u793a\uff0c\u806f\u90a6\u7db2\u8def\u7ba1\u7406\u54e1\u9084\u5fc5\u9808\u5728 48 \u5c0f\u6642\u5167\u6700\u5927\u7a0b\u5ea6\u5730\u5c07\u7cfb\u7d71\u8207\u4efb\u4f55\u4f01\u696d\u8cc7\u6e90\u9694\u96e2\uff0c\u4e26\u7e7c\u7e8c\u5be9\u6838\u7279\u6b0a\u7b49\u7d1a\u5b58\u53d6\u5e33\u865f\u3002\u70ba\u4e86\u4f7f\u7522\u54c1\u91cd\u65b0\u6295\u5165\u4f7f\u7528\uff0cCISA \u8868\u793a\uff0c\u5404\u6a5f\u69cb\u9700\u8981\u532f\u51fa\u8a2d\u5099\u914d\u7f6e\u8a2d\u5b9a\uff0c\u6309\u7167 Ivanti \u7684\u8aaa\u660e\u5b8c\u6210\u51fa\u5ee0\u91cd\u7f6e\uff0c\u4e26\u91cd\u5efa\u8a2d\u5099\u4e26\u5347\u7d1a\u5230\u5b8c\u5168\u4fee\u88dc\u7684\u8edf\u9ad4\u7248\u672c\u3002<\/p>\n\n\n\n

\u81ea\u53bb\u5e74 12 \u6708\u4ee5\u4f86\uff0c\u4e2d\u570b\u570b\u5bb6\u7d1a\u99ed\u5ba2\u5df2\u7d93\u5229\u7528\u4e86\u81f3\u5c11\u5169\u500b Ivanti Connect Secure \u6f0f\u6d1e\uff0c\u5206\u5225\u70ba CVE-2023-46805<\/a> \u548c CVE-2024-21887<\/a>\u3002 Ivanti \u9031\u4e09\u8868\u793a\uff0c\u5b83\u9084\u767c\u73fe\u4e86\u5169\u500b\u984d\u5916\u7684\u6f0f\u6d1e\u2014\u2014CVE-2024-21888 \u548c CVE-2024-21893\u2014\u2014\u5f8c\u8005\u5df2\u7d93\u88ab\u7528\u65bc\u300c\u6709\u91dd\u5c0d\u6027\u7684\u300d\u653b\u64ca\u3002 CISA \u5148\u524d\u8868\u793a\uff0c\u5b83\u9084\u89c0\u5bdf\u5230\u4e00\u4e9b\u91dd\u5c0d\u806f\u90a6\u6a5f\u69cb\u7684\u521d\u6b65\u76ee\u6a19\u3002<\/p>\n\n\n\n

Ivanti \u8a18\u9304\u4e86<\/a>\u56db\u500b\u7368\u7acb\u7684\u6f0f\u6d1e\uff1a<\/p>\n\n\n\n