Lucene search
K

5 matches found

Metasploit
Metasploit
added 2023/05/16 7:53 p.m.327 views

Ivanti Avalanche FileStoreConfig File Upload

Ivanti Avalanche prior to v6.4.0.186 permits MS-DOS style short names in the configuration path for the Central FileStore. Because of this, an administrator can change the default path to the web root of the applications, upload a JSP file, and achieve RCE as NT AUTHORITY\SYSTEM. Module Options m...

7.2CVSS7AI score0.84697EPSS
Exploits3
Circl
Circl
added 2023/05/10 2:13 a.m.42 views

CVE-2023-28128

creationtimestamp| type| source ---|---|--- 2023-05-10 02:13:59+00:00| seen| https://t.me/cibsecurity/63713 2023-05-16 14:35:29+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/ivantiavalanchefilestoreconfigupload.rb 2025-02-06 03:13:45+00:00|...

7.2CVSS7.1AI score0.84697EPSS
Exploits3References2
NVD
NVD
added 2023/05/09 10:15 p.m.66 views

CVE-2023-28128

An unrestricted upload of file with dangerous type vulnerability exists in Avalanche versions 6.3.x and below that could allow an attacker to achieve a remove code execution...

7.2CVSS7.1AI score0.84697EPSS
Exploits3References3
Vulnrichment
Vulnrichment
added 2023/05/09 12:0 a.m.6 views

CVE-2023-28128

An unrestricted upload of file with dangerous type vulnerability exists in Avalanche versions 6.3.x and below that could allow an attacker to achieve a remove code execution...

7.1AI score0.84697EPSS
Exploits3References2
CVE
CVE
added 2023/05/09 12:0 a.m.64 views

CVE-2023-28128

Ivanti Avalanche vulnerability CVE-2023-28128 affects Avalanche versions 6.3.x and below, where unrestricted upload of dangerous file types enables remote code execution. The issue stems from inadequate validation of file upload paths (MS-DOS style short names in the config path), allowing an adm...

7.2CVSS7AI score0.84697EPSS
Exploits3References3Affected Software1
Rows per page
Query Builder