Security Advisory

CVE-2026-8043

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-05-12 14:11:30

Last updated 2026-05-12 15:44:12

Assigner ivanti

State PUBLISHED

Description

External control of a file name in Ivanti Xtraction before version 2026.2 allows a remote authenticated attacker to read sensitive files and write arbitrary HTML files to a web directory, leading to information disclosure and possible client-side attacks.

← Browse all CVEs View on cve.org ↗