CVE-2023-41725 | Ivanti Avalanche up to 6.4.1 EnterpriseServer Service unrestricted upload

A vulnerability was found in Ivanti Avalanche up to 6.4.1 and classified as critical. Affected by this issue is some unknown functionality of the component EnterpriseServer Service. The manipulation leads to unrestricted upload.

This vulnerability is handled as CVE-2023-41725. Local access is required to approach this attack. There is no exploit available.

It is recommended to upgrade the affected component.