An improper authorization control vulnerability exists in Ivanti Avalanche before 6.3.3 allows an attacker with access to the Inforail Service to perform privilege escalation.
References
Link | Resource |
---|---|
https://forums.ivanti.com/s/article/Security-Alert-CVE-s-Addressed-in-Avalanche-6-3-3 | Vendor Advisory |
Configurations
Information
Published : 2021-12-07 06:15
Updated : 2022-08-09 07:45
NVD link : CVE-2021-42126
Mitre link : CVE-2021-42126
JSON object : View
CWE
Products Affected
ivanti
- avalanche