CVE-2021-22900

⚠ KEVEPSS 0.98%

Ivanti Pulse Connect Secure Unrestricted File Upload Vulnerability

Added to CISA KEV: 11/3/2021

Description

Ivanti Pulse Connect Secure contains an unrestricted file upload vulnerability that allows an authenticated administrator to perform a file write via a maliciously crafted archive upload in the administrator web interface.

Affected packages (0)

No package mapping in OSV.