CVE-2024-22060

An unrestricted file upload vulnerability in web component of Ivanti Neurons for ITSM allows a remote, authenticated, high privileged user to write arbitrary files into sensitive directories of ITSM server.
Configurations

No configuration.

History

21 Nov 2024, 08:55

Type Values Removed Values Added
References () https://forums.ivanti.com/s/article/Security-Advisory-May-2024 - () https://forums.ivanti.com/s/article/Security-Advisory-May-2024 -

25 Aug 2024, 15:35

Type Values Removed Values Added
Summary
  • (es) Una vulnerabilidad de carga de archivos sin restricciones en el componente web de Ivanti Neurons para ITSM permite a un usuario remoto, autenticado y con altos privilegios escribir archivos arbitrarios en directorios confidenciales del servidor ITSM.
CWE CWE-434

31 May 2024, 18:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-05-31 18:15

Updated : 2024-11-21 08:55


NVD link : CVE-2024-22060

Mitre link : CVE-2024-22060

CVE.ORG link : CVE-2024-22060


JSON object : View

Products Affected

No product.

CWE
CWE-434

Unrestricted Upload of File with Dangerous Type