Описание
An unrestricted upload of file with dangerous type vulnerability exists in Avalanche versions 6.3.x and below that could allow an attacker to achieve a remove code execution. Fixed in version 6.4.1.
Уязвимые конфигурации
Конфигурация 1Версия до 6.4.1 (исключая)
cpe:2.3:a:ivanti:avalanche:*:*:*:*:*:*:*:*
EPSS
Процентиль: 96%
0.27344
Средний
6.8 Medium
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-434
CWE-434
Связанные уязвимости
CVSS3: 6.8
github
больше 2 лет назад
An unrestricted upload of file with dangerous type vulnerability exists in Avalanche versions 6.3.x and below that could allow an attacker to achieve a remove code execution. Fixed in version 6.4.1.
EPSS
Процентиль: 96%
0.27344
Средний
6.8 Medium
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-434
CWE-434