5 matches found
Ivanti Avalanche FileStoreConfig File Upload
Ivanti Avalanche prior to v6.4.0.186 permits MS-DOS style short names in the configuration path for the Central FileStore. Because of this, an administrator can change the default path to the web root of the applications, upload a JSP file, and achieve RCE as NT AUTHORITY\SYSTEM. Module Options m...
CVE-2023-28128
creationtimestamp| type| source ---|---|--- 2023-05-10 02:13:59+00:00| seen| https://t.me/cibsecurity/63713 2023-05-16 14:35:29+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/ivantiavalanchefilestoreconfigupload.rb 2025-02-06 03:13:45+00:00|...
CVE-2023-28128
An unrestricted upload of file with dangerous type vulnerability exists in Avalanche versions 6.3.x and below that could allow an attacker to achieve a remove code execution...
CVE-2023-28128
An unrestricted upload of file with dangerous type vulnerability exists in Avalanche versions 6.3.x and below that could allow an attacker to achieve a remove code execution...
CVE-2023-28128
Ivanti Avalanche vulnerability CVE-2023-28128 affects Avalanche versions 6.3.x and below, where unrestricted upload of dangerous file types enables remote code execution. The issue stems from inadequate validation of file upload paths (MS-DOS style short names in the config path), allowing an adm...