First published: Tue Dec 19 2023(Updated: )
An unrestricted upload of file with dangerous type vulnerability exists in Avalanche versions 6.4.1 and below that could allow an attacker to achieve a remove code execution.
Credit: support@hackerone.com
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
Ivanti Avalanche | <6.4.2 | |
Microsoft Windows |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-46264 has a high severity rating due to the potential for remote code execution.
To fix CVE-2023-46264, upgrade Ivanti Avalanche to version 6.4.2 or above.
Ivanti Avalanche versions 6.4.1 and below are affected by CVE-2023-46264.
CVE-2023-46264 is an unrestricted file upload vulnerability that could lead to remote code execution.
No, CVE-2023-46264 is specifically related to Ivanti Avalanche running on Microsoft Windows.