A SQL Injection vulnerability exists in Ivanti Avalance before 6.3.3 allows an attacker with access to the Inforail Service to perform privilege escalation.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: hackerone

Published:

Updated: 2024-08-04T03:30:37.469Z

Reserved: 2021-10-08T00:00:00

Link: CVE-2021-42131

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-12-07T14:15:09.453

Modified: 2024-11-21T06:27:19.503

Link: CVE-2021-42131

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.