XML External Entity Processing Vulnerability in Ivanti Avalanche
CVE-2023-32567
6.5MEDIUM
What is CVE-2023-32567?
Ivanti Avalanche is impacted by an XML External Entity (XXE) processing vulnerability that allows attackers to manipulate XML data and potentially gain access to sensitive information. This issue has been addressed in version 6.4.1.236 of the product, enhancing the protection against such attacks. Users are advised to update promptly to safeguard their systems against exploitation.
Affected Version(s)
Wavelink 6.4.1.236