Unrated severityNVD Advisory· Published Dec 7, 2021· Updated Aug 4, 2024
CVE-2021-42124
CVE-2021-42124
Description
An improper access control vulnerability exists in Ivanti Avalanche before 6.3.3 allows an attacker with access to the Inforail Service to perform a session takeover.
Affected products
2- Ivanti/Avalanchedescription
Patches
Vulnerability mechanics
References
1- forums.ivanti.com/s/article/Security-Alert-CVE-s-Addressed-in-Avalanche-6-3-3mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.