An unrestricted upload of file with dangerous type vulnerability exists in Avalanche versions 6.3.x and below that could allow an attacker to achieve a remove code execution. Fixed in version 6.4.1.
Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Thu, 06 Mar 2025 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: hackerone

Published:

Updated: 2025-03-06T15:47:54.922Z

Reserved: 2023-05-10T01:00:12.524Z

Link: CVE-2023-32562

cve-icon Vulnrichment

Updated: 2024-08-02T15:18:37.791Z

cve-icon NVD

Status : Modified

Published: 2023-08-10T20:15:10.360

Modified: 2025-03-06T16:15:41.573

Link: CVE-2023-32562

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.