CVE-2021-22900: Ivanti Pulse Connect Secure Unrestricted File Upload

Ivanti Pulse Connect Secure Unrestricted File Upload Vulnerability. Ivanti Pulse Connect Secure contains an unrestricted file upload vulnerability that allows an authenticated administrator to perform a file write via a maliciously crafted archive upload in the administrator web interface.

• CISA KEV-listed (remediation due 2022-05-03)
• EPSS 2.6% (85.8% percentile)

Browse the CVE database

Read the full analysis on IntelFusions