Lucene search
K

10 matches found

Positive Technologies
Positive Technologies
added 2024/10/08 12:0 a.m.5 views

PT-2024-8642 · Ivanti · Ivanti Avalanche

Name of the Vulnerable Software and Affected Versions: Ivanti Avalanche versions prior to 6.4.6 Description: The issue is related to an infinite loop in Ivanti Avalanche, which can be exploited by a remote unauthenticated attacker to cause a denial of service. This means that the attacker can...

7.8CVSS7.3AI score0.01113EPSS
Exploits0References10
Zero Day Initiative
Zero Day Initiative
added 2024/04/23 12:0 a.m.18 views

Ivanti Avalanche WLAvalancheService Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Ivanti Avalanche. Authentication is not required to exploit this vulnerability. The specific flaw exists within the WLAvalancheService, which listens on TCP port 1777 by default. The issue...

5.3CVSS5.3AI score0.01884EPSS
Exploits0References1
OSV
OSV
added 2024/04/19 2:15 a.m.4 views

CVE-2024-27975

An Use-after-free vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM...

8.8CVSS7.5AI score0.02616EPSS
Exploits0References1
OSV
OSV
added 2024/04/19 2:15 a.m.2 views

CVE-2024-24991

A Null Pointer Dereference vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3 allows an authenticated remote attacker to perform denial of service attacks...

6.5CVSS5.8AI score0.01728EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/04/19 12:0 a.m.6 views

The vulnerability of the WLAvalancheService component in the Avalanche mobile device management system allows a hacker to trigger a service failure.

The vulnerability of the WLAvalancheService component in the mobile device management system of Avalanche is related to pointer assignment errors. Exploiting this vulnerability could allow a remote attacker to cause service failures...

6.8CVSS6.8AI score0.01728EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/19 12:0 a.m.6 views

The vulnerability of the WLAvalancheService component in the mobile device management system of Avalanche allows a hacker to disclose protected information.

The vulnerability of the WLAvalancheService component in the mobile device management system of Avalanche relates to memory-walking attacks. Exploiting this vulnerability could allow a malicious actor to disclose sensitive information that is protected by the system...

4.3CVSS5.7AI score0.01366EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/01/19 12:0 a.m.8 views

The vulnerability of the WLAvalancheService service in the Avalanche device management system allows a hacker to execute arbitrary code.

The vulnerability of the WLAvalancheService service in the mobile device management system Avalanche is related to buffer overflow in the stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using specially created data...

10CVSS8.6AI score0.11337EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/01/17 12:0 a.m.5 views

The vulnerability of the WLAvalancheService service in the Avalanche device management system allows a hacker to cause a service failure.

The vulnerability of the WLAvalancheService service in the mobile device management system of Avalanche is related to writing beyond the buffer boundaries. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.8CVSS7.4AI score0.09837EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2023/12/18 12:0 a.m.2 views

PT-2023-8330 · Ivanti · Ivanti Avalanche

Name of the Vulnerable Software and Affected Versions: Ivanti Avalanche versions affected versions not specified Description: The issue is related to a stack-based buffer overflow in the WLAvalancheService of the Ivanti Avalanche mobile device management system. This can be exploited by an attack...

9.8CVSS9.8AI score0.06782EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2023/12/12 12:0 a.m.2 views

PT-2023-8282 · Ivanti · Ivanti Avalanche

Name of the Vulnerable Software and Affected Versions: Ivanti Avalanche versions affected versions not specified Description: The issue is related to a buffer overflow in the WLAvalancheService of the Ivanti Avalanche system, which can be exploited by an attacker sending specially crafted data...

9.8CVSS7.8AI score0.09837EPSS
Exploits0References6
Rows per page
Query Builder