3 matches found
Ivanti Avalanche < 6.4.3.602 Unrestriceted File upload Vulnerability
The version of Ivanti Avalanche running on the remote host is prior to 6.4.3.602. It is, therefore, is affected by a vulnerability as referenced in the CVE-2024-29848 advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version...
CVE-2024-29848
Ivanti Avalanche has a validated vulnerability CVE-2024-29848: an unrestricted file upload in the Avalanche web component before 6.4.x can be exploited by an authenticated, privileged user to execute arbitrary commands as SYSTEM. Multiple sources (Red Hat, NVD/NIST, Nessus plugin, and Ivanti advi...
CVE-2024-29848
creationtimestamp| type| source ---|---|--- 2024-05-24 23:27:46+00:00| seen| https://t.me/itsecnews/4463...