Avalanche Security Vulnerabilities and Issues — Avalanche CVE List

Lucene search

IvantiAvalanche

4 matches found

CVE•added 2025/01/14 5:15 p.m.•39 views

CVE-2024-13180

Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker to leak sensitive information. This CVE addresses incomplete fixes from CVE-2024-47011.

7.5CVSS6.9AI score0.10807EPSS

CVE•added 2025/01/14 5:15 p.m.•36 views

CVE-2024-13181

Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker to bypass authentication. This CVE addresses incomplete fixes from CVE-2024-47010.

9.8CVSS7.1AI score0.21977EPSS

CVE•added 2025/01/14 5:15 p.m.•35 views

CVE-2024-13179

Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker to bypass authentication.

9.8CVSS7.1AI score0.06933EPSS

CVE•added 2025/07/12 4:15 a.m.•18 views

CVE-2023-38036

A security vulnerability within Ivanti Avalanche Manager before version 6.4.1 may allow an unauthenticated attacker to create a buffer overflow that could result in service disruption or arbitrary code execution.

9.8CVSS7.9AI score0.00753EPSS