CVE-2023-46808 - CERT CVE
ID CVE-2023-46808
Sažetak An file upload vulnerability in Ivanti ITSM before 2023.4, allows an authenticated remote user to perform file writes to the server. Successful exploitation may lead to execution of commands in the context of non-root user.
Reference
CVSS
Base: 9.9
Impact: 6.0
Exploitability:3.1
Pristup
VektorSloženostAutentikacija
NETWORK LOW LOW
Impact
PovjerljivostCjelovitostDostupnost
HIGH HIGH HIGH
CVSS vektor CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Zadnje važnije ažuriranje 01-08-2024 - 13:45
Objavljeno 31-03-2024 - 02:15