2021-12-07 13:13:24
hackerone
PUBLISHED
A SQL Injection vulnerability exists in Ivanti Avalance before 6.3.3 allows an attacker with access to the Inforail Service to perform privilege escalation.