THREATOPS
THREAT OPSCVEs › CVE-2021-22900

CVE-2021-22900 — Ivanti Pulse Connect Secure Unrestricted File Upload Vulnerability

CISA KEVExploited: confirmedIvanti

Ivanti Pulse Connect Secure contains an unrestricted file upload vulnerability that allows an authenticated administrator to perform a file write via a maliciously crafted archive upload in the administrator web interface.

Vulnerability details