4 matches found
CVE-2023-32567
Ivanti Avalanche decodeToMap XML External Entity Processing. Fixed in version 6.4.1.236...
CVE-2023-32567
Ivanti Avalanche decodeToMap XML External Entity Processing. Fixed in version 6.4.1.236...
CVE-2023-32567
Ivanti Avalanche decodeToMap XML External Entity Processing. Fixed in version 6.4.1.236...
CVE-2023-32567
Ivanti Avalanche contains an XXE-related vulnerability in the decodeToMap XML processing, enabling potential information disclosure in affected installations. The issue stems from improper handling of XML External Entity references within the decodeToMap method. Public advisories (ZDI-23-1167) de...