Lucene search
K

9 matches found

OSV
OSV
added 2023/03/29 7:15 p.m.7 views

CVE-2022-36976

This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490. The specific flaw exists within the GroupDaoImpl class. A crafted request can trigger execution of SQL queries composed from a user-supplied string. An attacker can levera...

9.8CVSS6AI score0.06534EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/03/29 12:0 a.m.28 views

Ivanti Avalanche 安全漏洞

Ivanti Avalanche is an enterprise mobile device management system from Ivanti, USA. The system is primarily used to manage devices such as smartphones, tablets and barcode scanners. A security vulnerability exists in Ivanti Avalanche version 6.3.2.3490, which stems from a lack of proper locking...

9.4CVSS8.4AI score0.83136EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/03/29 12:0 a.m.4 views

Ivanti Avalanche SQL注入漏洞

Ivanti Avalanche is an enterprise mobile device management system from Ivanti, USA. The system is primarily used to manage devices such as smartphones, tablets and barcode scanners. Ivanti Avalanche version 6.3.2.3490 suffers from a SQL injection vulnerability that stems from a crafted request in...

9.1CVSS8.8AI score0.06015EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/03/29 12:0 a.m.3 views

Ivanti Avalanche SQL注入漏洞

Ivanti Avalanche is an enterprise mobile device management system from Ivanti, USA. The system is primarily used to manage devices such as smartphones, tablets and barcode scanners. An SQL injection vulnerability exists in Ivanti Avalanche version 6.3.2.3490. An attacker could exploit this...

9.8CVSS8.7AI score0.06534EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/03/29 12:0 a.m.3 views

Ivanti Avalanche 代码问题漏洞

Ivanti Avalanche is an enterprise mobile device management system from Ivanti, USA. The system is primarily used to manage devices such as smartphones, tablets and barcode scanners. A code issue vulnerability exists in Ivanti Avalanche version 6.3.2.3490, which stems from a lack of proper...

9.8CVSS8.8AI score0.06708EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/05/26 12:0 a.m.4 views

PT-2022-23719 · Ivanti · Ivanti Avalanche

Name of the Vulnerable Software and Affected Versions: Ivanti Avalanche version 6.3.2.3490 Description: The issue allows remote attackers to bypass authentication on affected installations. The specific flaw exists within the ProfileDaoImpl class, where a crafted request can trigger execution of...

9.8CVSS9.5AI score0.06534EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/05/26 12:0 a.m.7 views

PT-2022-23720 · Ivanti · Ivanti Avalanche

Name of the Vulnerable Software and Affected Versions: Ivanti Avalanche version 6.3.2.3490 Description: This issue allows remote attackers to bypass authentication on affected installations. The specific flaw exists within the GroupDaoImpl class. A crafted request can trigger execution of SQL...

9.8CVSS9.6AI score0.06534EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/05/26 12:0 a.m.5 views

PT-2022-23723 · Ivanti · Ivanti Avalanche

Name of the Vulnerable Software and Affected Versions: Ivanti Avalanche version 6.3.2.3490 Description: This issue allows remote attackers to bypass authentication on affected installations. Although authentication is required to exploit this issue, the existing authentication mechanism can be...

9.8CVSS7.8AI score0.06534EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/05/26 12:0 a.m.8 views

PT-2022-23724 · Ivanti · Ivanti Avalanche

Name of the Vulnerable Software and Affected Versions: Ivanti Avalanche version 6.3.2.3490 Description: This issue allows remote attackers to bypass authentication on affected installations. Although authentication is required to exploit this issue, the existing authentication mechanism can be...

9.4CVSS8.9AI score0.83136EPSS
Exploits0References4
Rows per page
Query Builder