CVE-2024-29848
published 2024-05-31CVE-2024-29848: An unrestricted file upload vulnerability in web component of Ivanti Avalanche before 6.4.x allows an authenticated, privileged user to execute arbitrary…
PriorityP265high7.2CVSS 3.1
AVNACLPRHUINSUCHIHAH
EPSS
64.42%
99.1th percentile
An unrestricted file upload vulnerability in web component of Ivanti Avalanche before 6.4.x allows an authenticated, privileged user to execute arbitrary commands as SYSTEM.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ivanti | avalanche | < 6.4.3.602 | 6.4.3.602 |
| ivanti | avalanche | 6.4.3 – 6.4.3 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Unrestricted file upload vulnerability in the web component of Ivanti Avalanche; monitor for suspicious file uploads by authenticated privileged users that may result in SYSTEM-level command execution ↗
- ·Exploitation requires an authenticated, privileged user account; attack surface is limited to users with elevated privileges in Ivanti Avalanche versions before 6.4.x ↗
CVSS provenance
nvdv3.17.2HIGHCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
nvdv3.07.2HIGHCVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ivanti
Ivanti Security Advisory: CVE-2024-29848
vendor_ivanti·2024-05-31·CVSS 7.2
CVE-2024-29848 [HIGH] CWE-434 Ivanti Security Advisory: CVE-2024-29848
Ivanti Security Advisory: CVE-2024-29848
An unrestricted file upload vulnerability in web component of Ivanti Avalanche before 6.4.x allows an authenticated, privileged user to execute arbitrary commands as SYSTEM.
CVE IDs: CVE-2024-29848
CVSS Base Score: 7.2
Severity: HIGH
CWEs: CWE-434
GHSA
GHSA-5h39-x96v-hf62: An unrestricted file upload vulnerability in web component of Ivanti Avalanche before 6
ghsa_unreviewed·2024-05-31
CVE-2024-29848 [HIGH] CWE-434 GHSA-5h39-x96v-hf62: An unrestricted file upload vulnerability in web component of Ivanti Avalanche before 6
An unrestricted file upload vulnerability in web component of Ivanti Avalanche before 6.4.x allows an authenticated, privileged user to execute arbitrary commands as SYSTEM.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://forums.ivanti.com/s/article/Security-Advisory-May-2024https://forums.ivanti.com/s/article/Avalanche-6-4-3-602-additional-security-hardening-and-CVE-fixed?language=en_UShttps://forums.ivanti.com/s/article/Security-Advisory-May-2024https://forums.ivanti.com/s/article/Avalanche-6-4-3-602-additional-security-hardening-and-CVE-fixed?language=en_US
2024-05-31
Published