A SQL Injection vulnerability exists in Ivanti Avalance...
High severity
Unreviewed
Published
Dec 8, 2021
to the GitHub Advisory Database
•
Updated Feb 1, 2023
Description
Published by the National Vulnerability Database
Dec 7, 2021
Published to the GitHub Advisory Database
Dec 8, 2021
Last updated
Feb 1, 2023
A SQL Injection vulnerability exists in Ivanti Avalance before 6.3.3 allows an attacker with access to the Inforail Service to perform privilege escalation.
References