CVE-2021-42127

Publication date

2021-12-07 13:13:01

Family

hackerone

State

PUBLISHED

Description

A deserialization of untrusted data vulnerability exists in Ivanti Avalanche before 6.3.3 using Inforail Service allows arbitrary code execution via Data Repository Service.