3 matches found
CVE-2022-36981
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Avalanche 6.3.3.101. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...
CVE-2022-36981
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Avalanche 6.3.3.101. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...
CVE-2022-36981
CVE-2022-36981 affects Ivanti Avalanche 6.3.3.101. A path traversal flaw in the DeviceLogResource class allows remote code execution by exploiting improper validation of a user-supplied path in file operations. Authentication is required to exploit, but the existing authentication can be bypassed...