CVE-2021-30497

EPSS 96.6%

Vexday Risk Score

40Atención

Decisión SSVC (CISA)

Attend

PoC disponible → seguir de cerca

CVSS —EPSS 96.6%KEV nãoPoC —Nuclei simMetasploit —Patch —

Ciclo de vida

06 abr 2022Publicada en NVD

Recomendación: Planificar corrección próxima — ya existe PoC pública.

Ivanti Avalanche (Premise) 6.3.2 allows remote unauthenticated users to read arbitrary files via Absolute Path Traversal. The imageFilePath parameter processed by the /AvalancheWeb/image endpoint is not verified to be within the scope of the image folder, e.g., the attacker can obtain sensitive information via the C:/Windows/system32/config/system.sav value.

Productos afectados

n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://forums.ivanti.com/s/article/Security-Alert-CVE-2021-30497-Directory-Traversal-Vulnerability?language=en_US https://help.ivanti.com/wl/help/en_us/aod/5.4/Avalanche/Console/Launching_the_Avalanche.htm https://ssd-disclosure.com/ssd-advisory-ivanti-avalanche-directory-traversal/