2021-12-07 13:12:44
hackerone
PUBLISHED
An improper access control vulnerability exists in Ivanti Avalanche before 6.3.3 allows an attacker with access to the Inforail Service to perform a session takeover.