Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

120 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-25152

Malicious code in bioql PyPI...

6.5CVSS6.9AI score0.01728EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-22353

Malicious code in bioql PyPI...

6.5CVSS6.9AI score0.01728EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/23 10:18 a.m.5 views

CVE-2024-23530

An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3, in certain conditions can allow an unauthenticated remote attacker to read sensitive information in memory...

7.5CVSS6.6AI score0.01884EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 8:38 a.m.2 views

CVE-2024-23533

An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3, in certain conditions can allow an authenticated remote attacker to read sensitive information in memory...

6.5CVSS6.5AI score0.01366EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 8:9 a.m.8 views

CVE-2024-27978

A Null Pointer Dereference vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3 allows an authenticated remote attacker to perform denial of service attacks...

6.5CVSS6.7AI score0.01728EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/11/13 12:0 a.m.8 views

Ivanti Avalanche WLAvalancheService TV_FN Infinite Loop Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Ivanti Avalanche. Authentication is not required to exploit this vulnerability. The specific flaw exists within the WLAvalancheService service, which listens on TCP port 1777 by default...

7.5CVSS6.6AI score0.01113EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/11/13 12:0 a.m.6 views

Ivanti Avalanche WLAvalancheService TV_FP Null Pointer Dereference Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Ivanti Avalanche. Authentication is not required to exploit this vulnerability. The specific flaw exists within the WLAvalancheService service, which listens on TCP port 1777 by default...

7.5CVSS6.6AI score0.01113EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/11/13 12:0 a.m.8 views

Ivanti Avalanche WLAvalancheService TV_FP Infinite Loop Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Ivanti Avalanche. Authentication is not required to exploit this vulnerability. The specific flaw exists within the WLAvalancheService service, which listens on TCP port 1777 by default...

7.5CVSS6.6AI score0.01113EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/11/13 12:0 a.m.7 views

Ivanti Avalanche WLAvalancheService TV_FC Infinite Loop Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Ivanti Avalanche. Authentication is not required to exploit this vulnerability. The specific flaw exists within the WLAvalancheService service, which listens on TCP port 1777 by default...

7.5CVSS6.6AI score0.31235EPSS
Exploits0References1
OSV
OSVadded 2024/10/08 5:15 p.m.4 views

CVE-2024-47007

A NULL pointer dereference in WLAvalancheService.exe of Ivanti Avalanche before version 6.4.5 allows a remote unauthenticated attacker to cause a denial of service...

7.5CVSS5.8AI score0.01239EPSS
Exploits0References1
NVD
NVDadded 2024/10/08 5:15 p.m.24 views

CVE-2024-47007

A NULL pointer dereference in WLAvalancheService.exe of Ivanti Avalanche before version 6.4.5 allows a remote unauthenticated attacker to cause a denial of service...

7.5CVSS0.01239EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2024/08/23 12:0 a.m.27 views

Ivanti Avalanche < 6.4.4 Multiple Vulnerabilities

The version of Ivanti Avalanche running on the remote host is prior to 6.4.4. It is, therefore, is affected by multiple vulnerabilities : - An off-by-one error in WLInfoRailService allows a remote unauthenticated attacker to crash the service. CVE-2024-36136 - Improper input validation in the...

9.1CVSS7.9AI score0.91984EPSS
Exploits1References6
Zero Day Initiative
Zero Day Initiativeadded 2024/08/15 12:0 a.m.8 views

Ivanti Avalanche WLAvalancheService Null Pointer Dereference Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Ivanti Avalanche. Authentication is not required to exploit this vulnerability. The specific flaw exists within the WLAvalancheService service, which listens on TCP port 1777 by default...

7.5CVSS9.2AI score0.27788EPSS
Exploits0References1
OSV
OSVadded 2024/08/14 3:15 a.m.1 views

CVE-2024-37399

A NULL pointer dereference in WLAvalancheService in Ivanti Avalanche 6.3.1 allows a remote unauthenticated attacker to crash the service, resulting in a DoS...

7.5CVSS5.8AI score0.91984EPSS
Exploits1References1
NVD
NVDadded 2024/08/14 3:15 a.m.21 views

CVE-2024-37399

A NULL pointer dereference in WLAvalancheService in Ivanti Avalanche 6.3.1 allows a remote unauthenticated attacker to crash the service, resulting in a DoS...

7.5CVSS0.27788EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/08/13 12:0 a.m.2 views

PT-2024-8681

Name of the Vulnerable Software and Affected Versions Ivanti Avalanche versions 6.3.1 Description A NULL pointer dereference exists in the WLAvalancheService component of Ivanti Avalanche. This issue allows a remote, unauthenticated attacker to cause a denial-of-service DoS condition by crashing...

9.1CVSS7.8AI score0.91984EPSS
Exploits1References24
OSV
OSVadded 2024/04/25 6:15 a.m.2 views

CVE-2024-23527

An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3, in certain conditions can allow an unauthenticated remote attacker to read sensitive information in memory...

7.5CVSS5.8AI score0.01987EPSS
Exploits0References1
CVE
CVEadded 2024/04/24 11:12 p.m.75 views

CVE-2024-23527

Ivanti Avalanche

7.5CVSS5.2AI score0.01987EPSS
Exploits0References1Affected Software1
Zero Day Initiative
Zero Day Initiativeadded 2024/04/23 12:0 a.m.11 views

Ivanti Avalanche WLAvalancheService Directory Traversal Arbitrary File Deletion Vulnerability

This vulnerability allows remote attackers to delete arbitrary files on affected installations of Ivanti Avalanche. Authentication is required to exploit this vulnerability. The specific flaw exists within the WLAvalancheService, which listens on TCP port 1777 by default. The issue results from t...

7.1CVSS6.9AI score0.01807EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/04/23 12:0 a.m.15 views

Ivanti Avalanche WLAvalancheService Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Avalanche. Authentication is required to exploit this vulnerability. The specific flaw exists within the WLAvalancheService, which listens on TCP port 1777 by default. The issue results from t...

8.8CVSS8.9AI score0.03237EPSS
Exploits0References1
Rows per page
Query Builder