8.1

CVSS3.1

CVE-2024-27977 -

A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to delete arbitrary files, thereby leading to Denial-of-Service.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: May 6, 2025, 2:21 p.m.

8.8

CVSS3.1

CVE-2024-24992 -

A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: May 6, 2025, 6:28 p.m.

7.5

CVSS3.1

CVE-2024-23532 -

An out-of-bounds Read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3 allows an authenticated remote attacker to perform denial of service attacks. In certain conditions this could also lead to remote code execution.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: May 6, 2025, 7:24 p.m.

8.8

CVSS3.1

CVE-2024-23535 -

A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: Dec. 16, 2025, 6:13 p.m.

8.8

CVSS3.1

CVE-2024-24998 -

A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: May 6, 2025, 6:22 p.m.

7.5

CVSS3.1

CVE-2024-24995 -

A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: Dec. 16, 2025, 6:13 p.m.

7.5

CVSS3.1

CVE-2024-24993 -

A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: May 6, 2025, 7:18 p.m.

8.8

CVSS3.1

CVE-2024-24999 -

A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: Dec. 16, 2025, 6:13 p.m.

6.5

CVSS3.1

CVE-2024-24991 -

A Null Pointer Dereference vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3 allows an authenticated remote attacker to perform denial of service attacks.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: May 6, 2025, 6:28 p.m.

8.8

CVSS3.1

CVE-2024-24997 -

A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: Dec. 16, 2025, 6:13 p.m.
Total resulsts: 349182
Page 10208 of 34,919
ยซ previous page ยป next page
Filters