10 matches found
PT-2024-8642 · Ivanti · Ivanti Avalanche
Name of the Vulnerable Software and Affected Versions: Ivanti Avalanche versions prior to 6.4.6 Description: The issue is related to an infinite loop in Ivanti Avalanche, which can be exploited by a remote unauthenticated attacker to cause a denial of service. This means that the attacker can...
Ivanti Avalanche WLAvalancheService Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Ivanti Avalanche. Authentication is not required to exploit this vulnerability. The specific flaw exists within the WLAvalancheService, which listens on TCP port 1777 by default. The issue...
CVE-2024-27975
An Use-after-free vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM...
CVE-2024-24991
A Null Pointer Dereference vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3 allows an authenticated remote attacker to perform denial of service attacks...
The vulnerability of the WLAvalancheService component in the Avalanche mobile device management system allows a hacker to trigger a service failure.
The vulnerability of the WLAvalancheService component in the mobile device management system of Avalanche is related to pointer assignment errors. Exploiting this vulnerability could allow a remote attacker to cause service failures...
The vulnerability of the WLAvalancheService component in the mobile device management system of Avalanche allows a hacker to disclose protected information.
The vulnerability of the WLAvalancheService component in the mobile device management system of Avalanche relates to memory-walking attacks. Exploiting this vulnerability could allow a malicious actor to disclose sensitive information that is protected by the system...
The vulnerability of the WLAvalancheService service in the Avalanche device management system allows a hacker to execute arbitrary code.
The vulnerability of the WLAvalancheService service in the mobile device management system Avalanche is related to buffer overflow in the stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using specially created data...
The vulnerability of the WLAvalancheService service in the Avalanche device management system allows a hacker to cause a service failure.
The vulnerability of the WLAvalancheService service in the mobile device management system of Avalanche is related to writing beyond the buffer boundaries. Exploiting this vulnerability could allow a malicious actor to cause service failures...
PT-2023-8330 · Ivanti · Ivanti Avalanche
Name of the Vulnerable Software and Affected Versions: Ivanti Avalanche versions affected versions not specified Description: The issue is related to a stack-based buffer overflow in the WLAvalancheService of the Ivanti Avalanche mobile device management system. This can be exploited by an attack...
PT-2023-8282 · Ivanti · Ivanti Avalanche
Name of the Vulnerable Software and Affected Versions: Ivanti Avalanche versions affected versions not specified Description: The issue is related to a buffer overflow in the WLAvalancheService of the Ivanti Avalanche system, which can be exploited by an attacker sending specially crafted data...