Unrestricted File Upload Vulnerability in Ivanti Avalanche Before 6.3.3

Unrestricted File Upload Vulnerability in Ivanti Avalanche Before 6.3.3

CVE-2021-42125 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

An unrestricted file upload vulnerability exists in Ivanti Avalanche before 6.3.3 allows an attacker with access to the Inforail Service to write dangerous files.

Learn more about our Web Application Penetration Testing UK.