An file upload vulnerability in Ivanti ITSM before 2023.4, allows an authenticated remote user to perform file writes to the server. Successful exploitation may lead to execution of commands in the context of non-root user.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: hackerone
Published: 2024-03-31T01:45:43.264Z
Updated: 2024-08-02T20:53:21.657Z
Reserved: 2023-10-27T01:00:13.400Z
Link: CVE-2023-46808
Vulnrichment
Updated: 2024-08-02T20:53:21.657Z
NVD
Status : Modified
Published: 2024-03-31T02:15:08.757
Modified: 2024-11-21T08:29:21.070
Link: CVE-2023-46808
Redhat
No data.