A vulnerability has been found in Ivanti Avalanche 6.3.4.153 and classified as critical. Affected by this vulnerability is an unknown functionality of the file web.xml. The manipulation of the argument loc leads to path traversal.

This vulnerability is known as CVE-2023-41474. The attack can be launched remotely. There is no exploit available.