VYPR
Unrated severityNVD Advisory· Published Apr 19, 2024· Updated Aug 2, 2024

CVE-2024-27977

CVE-2024-27977

Description

A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to delete arbitrary files, thereby leading to Denial-of-Service.

Affected products

2
  • Ivanti/Avalanchellm-fuzzy2 versions
    <6.4.3+ 1 more
    • (no CPE)range: <6.4.3
    • (no CPE)range: 6.4.3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.