6.5

CVSS3.1

CVE-2024-27978 -

A Null Pointer Dereference vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3 allows an authenticated remote attacker to perform denial of service attacks.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: May 6, 2025, 2:18 p.m.

8.8

CVSS3.1

CVE-2024-24994 -

A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: May 6, 2025, 6:29 p.m.

9.8

CVSS3.1

CVE-2024-24996 -

A Heap overflow vulnerability in WLInfoRailService component of Ivanti Avalanche before 6.4.3 allows an unauthenticated remote attacker to execute arbitrary commands.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: May 6, 2025, 7:17 p.m.

8.8

CVSS3.1

CVE-2024-23534 -

An Unrestricted File-upload vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: Dec. 16, 2025, 6:13 p.m.

6.5

CVSS3.1

CVE-2024-23533 -

An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3, in certain conditions can allow an authenticated remote attacker to read sensitive information in memory.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: May 6, 2025, 7:24 p.m.

7.5

CVSS3.1

CVE-2024-23531 -

An Integer Overflow vulnerability in WLInfoRailService component of Ivanti Avalanche before 6.4.3 allows an unauthenticated remote attacker to perform denial of service attacks. In certain rare conditions this could also lead to reading content from memory.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: May 6, 2025, 7:23 p.m.

7.5

CVSS3.1

CVE-2024-23530 -

An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3, in certain conditions can allow an unauthenticated remote attacker to read sensitive information in memory.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: May 6, 2025, 7:09 p.m.

8.8

CVSS3.1

CVE-2024-27976 -

A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: Dec. 16, 2025, 6:13 p.m.

9.8

CVSS3.1

CVE-2024-29204 -

A Heap Overflow vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3 allows a remote unauthenticated attacker to execute arbitrary commands

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: Dec. 16, 2025, 6:13 p.m.

8.8

CVSS3.1

CVE-2024-27975 -

An Use-after-free vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.

๐Ÿ“… Published: April 19, 2024, 1:10 a.m. ๐Ÿ”„ Last Modified: Dec. 16, 2025, 6:13 p.m.
Total resulsts: 349182
Page 10209 of 34,919
ยซ previous page ยป next page
Filters