CVE-2024-29848 | Ivanti Avalanche FileStoreConfig unrestricted upload

Inserito da Angelo Barbosa | Mag 25, 2024 | CVE

A vulnerability was found in Ivanti Avalanche and classified as critical. This issue affects the function FileStoreConfig. The manipulation leads to unrestricted upload.

The identification of this vulnerability is CVE-2024-29848. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-29848 | Ivanti Avalanche FileStoreConfig unrestricted upload

Post correlati

CVE-2024-6540 | OTRS up to 8.0.x/2023.x/2024.4.x Ticket improper filtering of special elements

CVE-2024-22339 | IBM UrbanCode Deploy/DevOps Deploy log file (XFDB-279979)

CVE-2023-6695 | Beaver Themer Plugin up to 1.4.9 on WordPress Shortcode information disclosure

CVE-2024-36456 | Broadcom Symantec Privileged Access Management up to 3.4.6/4.1.7 PAM System unrestricted upload