February Security Update

Ivanti has released its February security update, addressing vulnerabilities across several key products including Ivanti Cloud Service Application, Neurons for MDM, Connect Secure, Policy Secure, and Secure Access Client. The vendor emphasizes its commitment to rigorous testing and transparent communication to empower customers to defend their environments. Importantly, Ivanti states there is currently no evidence indicating that these specific vulnerabilities are being exploited in the wild. Standard security patches are released on the second Tuesday of each month to facilitate IT resource planning. Customers are urged to apply the available fixes immediately to remediate potential risks. Detailed instructions and further information are accessible via specific Security Advisories linked by the vendor. Support remains available through the Success portal for partners and customers requiring assistance with implementation or having questions regarding the updated security posture.

Ivanti’s vulnerability management program is a central part of our commitment to security. We employ rigorous testing and validation methodologies to enable swift identification, patching, and disclosure of vulnerabilities in collaboration with the broader security ecosystem. Our priority is to provide responsible and transparent communication to our customers, so they are empowered to defend their environments. In recent months, we have intensified our internal scanning, manual exploitation and testing capabilities, and have also made enhancements to our responsible disclosure process so that we promptly discover and address potential issues, and so that our customers are best equipped to take action. Ivanti releases standard security patches on the second Tuesday of every month. For many of our customers, the predictable schedule facilitates better planning and management of IT resources, allowing them to allocate time and personnel efficiently for the timely updates. Today, fixes have been released for the Ivanti solutions detailed below. It is important for customers to know: We have no evidence of any of these vulnerabilities being exploited in the wild. These vulnerabilities do not impact any other Ivanti products. More information on these vulnerabilities and detailed instructions on how to remediate the issues can be found in these Security Advisories: Ivanti Cloud Service Application Ivanti Neurons for MDM Ivanti Connect Secure, Policy Secure and Secure Access Client Our Support team is always available to help customers and partners should they have any questions. Cases can be logged via the Success portal (login credentials required). Want to stay up to date on Ivanti Security Advisories? Paste https://www.ivanti.com/blog/topics/security-advisory/rss into your preferred RSS reader / functionality in your email program.

Ivanti has released its February security update, addressing vulnerabilities across several key products including Ivanti Cloud Service Application, Neurons for MDM, Connect Secure, Policy Secure, and Secure Access Client. The vendor emphasizes its commitment to rigorous testing and transparent communication to empower customers to defend their environments. Importantly, Ivanti states there is currently no evidence indicating that these specific vulnerabilities are being exploited in the wild. Standard security patches are released on the second Tuesday of each month to facilitate IT resource planning. Customers are urged to apply the available fixes immediately to remediate potential risks. Detailed instructions and further information are accessible via specific Security Advisories linked by the vendor. Support remains available through the Success portal for partners and customers requiring assistance with implementation or having questions regarding the updated security posture. Ivanti’s vulnerability management program is a central part of our commitment to security. We employ rigorous testing and validation methodologies to enable swift identification, patching, and disclosure of vulnerabilities in collaboration with the broader security ecosystem. Our priority is to provide responsible and transparent communication to our customers, so they are empowered to defend their environments. In recent months, we have intensified our internal scanning, manual exploitation and testing capabilities, and have also made enhancements to our responsible disclosure process so that we promptly discover and address potential issues, and so that our customers are best equipped to take action. Ivanti releases standard security patches on the second Tuesday of every month. For many of our customers, the predictable schedule facilitates better planning and management of IT resources, allowing them to allocate time and personnel efficiently for the timely updates. Today, fixes have been released for the Ivanti solutions detailed below. It is important for customers to know: We have no evidence of any of these vulnerabilities being exploited in the wild. These vulnerabilities do not impact any other Ivanti products. More information on these vulnerabilities and detailed instructions on how to remediate the issues can be found in these Security Advisories: Ivanti Cloud Service Application Ivanti Neurons for MDM Ivanti Connect Secure, Policy Secure and Secure Access Client Our Support team is always available to help customers and partners should they have any questions. Cases can be logged via the Success portal (login credentials required). Want to stay up to date on Ivanti Security Advisories? Paste https://www.ivanti.com/blog/topics/security-advisory/rss into your preferred RSS reader / functionality in your email program. Ivanti’s vulnerability management program is a central part of our commitment to security. We employ rigorous testing and validation methodologies to enable swift identification, patching, and disclosure of vulnerabilities in collaboration with the broader security ecosystem. Our priority is to provide responsible and transparent communication to our customers, so they are empowered to defend their environments. In recent months, we have intensified our internal scanning, manual exploitation and testing capabilities, and have also made enhancements to our responsible disclosure process so that we promptly discover and address potential issues, and so that our customers are best equipped to take action. Ivanti releases standard security patches on the second Tuesday of every month. For many of our customers, the predictable schedule facilitates better planning and management of IT resources, allowing them to allocate time and personnel efficiently for the timely updates. Today, fixes have been released for the Ivanti solutions detailed below. It is important for customers to know: We have no evidence of any of these vulnerabilities being exploited in the wild. These vulnerabilities do not impact any other Ivanti products. More information on these vulnerabilities and detailed instructions on how to remediate the issues can be found in these Security Advisories: Ivanti Cloud Service Application Ivanti Neurons for MDM Ivanti Connect Secure, Policy Secure and Secure Access Client Our Support team is always available to help customers and partners should they have any questions. Cases can be logged via the Success portal (login credentials required). Want to stay up to date on Ivanti Security Advisories? Paste https://www.ivanti.com/blog/topics/security-advisory/rss into your preferred RSS reader / functionality in your email program.