Lucene search
K

CVE-2024-38653

🗓️ 14 Aug 2024 02:38:00Reported by hackeroneType 
cve
 cve
🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 81 Views

XXE vulnerability in SmartDeviceServer in Ivanti Avalanche 6.3.

Related
Detection
Affected
Refs
Social
ReporterTitlePublishedViews
Family
GithubExploit
Exploit for Improper Restriction of XML External Entity Reference in Ivanti Endpoint_Manager
9 May 202403:10
githubexploit
BDU FSTEC
The vulnerability of the SmartDeviceServer component in the Ivanti Avalanche mobile device management system allows a hacker to disclose protected information.
26 Nov 202400:00
bdu_fstec
Circl
CVE-2024-38653
14 Aug 202405:40
circl
CVE
CVE-2024-36136
14 Aug 202402:38
cve
CVE
CVE-2024-38652
14 Aug 202402:38
cve
Cvelist
CVE-2024-36136
14 Aug 202402:38
cvelist
Cvelist
CVE-2024-38652
14 Aug 202402:38
cvelist
Cvelist
CVE-2024-38653
14 Aug 202402:38
cvelist
EUVD
EUVD-2024-35894
3 Oct 202520:07
euvd
EUVD
EUVD-2024-36620
3 Oct 202520:07
euvd
Rows per page
NVD
Vulners
Vulnrichment
Node
ivantiavalancheMatch6.3.1premise
OR
ivantiavalancheMatch6.3.1.1507premise
OR
ivantiavalancheMatch6.3.2
OR
ivantiavalancheMatch6.3.2windows
OR
ivantiavalancheMatch6.3.2premise
OR
ivantiavalancheMatch6.3.2.3490
OR
ivantiavalancheMatch6.3.2.3490premise
OR
ivantiavalancheMatch6.3.3
OR
ivantiavalancheMatch6.3.3premise
OR
ivantiavalancheMatch6.3.3.101
OR
ivantiavalancheMatch6.3.3.101premise
OR
ivantiavalancheMatch6.3.4
OR
ivantiavalancheMatch6.3.4premise
OR
ivantiavalancheMatch6.3.4.153premise
OR
ivantiavalancheMatch6.4.0
OR
ivantiavalancheMatch6.4.1
OR
ivantiavalancheMatch6.4.1premise
OR
ivantiavalancheMatch6.4.1.207premise
OR
ivantiavalancheMatch6.4.1.236premise
OR
ivantiavalancheMatch6.4.2premise
[
  {
    "defaultStatus": "unaffected",
    "vendor": "Ivanti",
    "product": "Avalanche",
    "versions": [
      {
        "version": "6.4.4",
        "status": "affected",
        "lessThan": "6.4.4",
        "versionType": "custom"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 07:40Current
7.1High risk
Vulners AI Score7.1
CVSS 3.17.5
CVSS 38.2
EPSS0.91984
SSVC
81