CVE-2023-41474 | Ivanti Avalanche 6.3.4.153 web.xml loc path traversal

Inserito da Angelo Barbosa | Gen 25, 2024 | CVE

A vulnerability has been found in Ivanti Avalanche 6.3.4.153 and classified as critical. Affected by this vulnerability is an unknown functionality of the file web.xml. The manipulation of the argument loc leads to path traversal.

This vulnerability is known as CVE-2023-41474. The attack can be launched remotely. There is no exploit available.

CVE-2023-41474 | Ivanti Avalanche 6.3.4.153 web.xml loc path traversal

Post correlati

CVE-2023-41999 | Arcserve UDP up to 9.1 Management Console improper authentication

CVE-2024-35726 | ThemeKraft WooBuddy Plugin up to 3.4.19 on WordPress authorization

CVE-2024-1170 | Post Form Plugin up to 2.8.7 on WordPress Media Deletion authorization

CVE-2024-28110 | CloudEvents sdk-go up to 2.15.1 insufficiently protected credentials