Global infos:

An Unrestricted File-upload vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.

CVE Status: Awaiting Analysis

References:

[email protected]

af854a3a-2127-422b-91ae-364da2661108

Metrics:

No CVSS data available

Links:

Exploit-db
Github