An file upload vulnerability in Ivanti ITSM before 2023.4, allows an authenticated remote user to perform file writes to the server. Successful exploitation may lead to execution of commands in the context of non-root user.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: hackerone

Published: 2024-03-31T01:45:43.264Z

Updated: 2024-08-02T20:53:21.657Z

Reserved: 2023-10-27T01:00:13.400Z

Link: CVE-2023-46808

cve-icon Vulnrichment

Updated: 2024-08-02T20:53:21.657Z

cve-icon NVD

Status : Modified

Published: 2024-03-31T02:15:08.757

Modified: 2024-11-21T08:29:21.070

Link: CVE-2023-46808

cve-icon Redhat

No data.