cbcvebase.

Ivanti Avalanche vulnerabilities

117 known vulnerabilities affecting ivanti/avalanche.

Total CVEs
117
CISA KEV
0
Public exploits
5
Exploited in wild
3
Severity breakdown
CRITICAL47HIGH63MEDIUM7

Vulnerabilities

Page 4 of 6
CVE-2022-36973P2HIGHCVSS 8.8≥ 6.3.2.3490, < 6.3.4v6.3.2.34902023-03-29
CVE-2022-36973 [HIGH] CWE-89 CVE-2022-36973: This vulnerability allows remote attackers to bypass authentication on affected installations of Iva This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the ProfileDaoImpl class. A crafted request can trigger execution of SQL q
nvd
CVE-2023-28126P3MEDIUMCVSS 5.9≤ 6.3.4.153vAvalanche versions 6.3.x and below2023-05-09
CVE-2023-28126 [MEDIUM] CWE-305 CVE-2023-28126: An authentication bypass vulnerability exists in Avalanche versions 6.3.x and below that could allow An authentication bypass vulnerability exists in Avalanche versions 6.3.x and below that could allow an attacker to gain access by exploiting the SetUser method or can exploit the Race Condition in the authentication message.
nvd
CVE-2024-23534P2HIGHCVSS 8.8fixed in 6.4.3.528≥ 6.4.3, < 6.4.32024-04-19
CVE-2024-23534 [HIGH] CWE-434 CVE-2024-23534: An Unrestricted File-upload vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a An Unrestricted File-upload vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.
nvd
CVE-2024-13180P2HIGHCVSS 7.5fixed in 6.4.72025-01-14
CVE-2024-13180 [HIGH] CWE-22 CVE-2024-13180: Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker to Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker to leak sensitive information. This CVE addresses incomplete fixes from CVE-2024-47011.
nvd
CVE-2024-24997P2HIGHCVSS 8.8fixed in 6.4.3.528≥ 6.4.3, < 6.4.32024-04-19
CVE-2024-24997 [HIGH] CWE-22 CVE-2024-24997: A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote aut A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.
nvd
CVE-2024-24998P2HIGHCVSS 8.8fixed in 6.4.3.528≥ 6.4.3, < 6.4.32024-04-19
CVE-2024-24998 [HIGH] CWE-31 CVE-2024-24998: A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote aut A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.
nvd
CVE-2024-27976P2HIGHCVSS 8.8fixed in 6.4.3.528≥ 6.4.3, < 6.4.32024-04-19
CVE-2024-27976 [HIGH] CWE-22 CVE-2024-27976: A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote aut A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.
nvd
CVE-2024-25000P2HIGHCVSS 8.8fixed in 6.4.3.528≥ 6.4.3, < 6.4.32024-04-19
CVE-2024-25000 [HIGH] CWE-22 CVE-2024-25000: A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote aut A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.
nvd
CVE-2024-24999P2HIGHCVSS 8.8fixed in 6.4.3.5282024-04-19
CVE-2024-24999 [HIGH] CWE-22 CVE-2024-24999: A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote aut A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.
nvd
CVE-2021-42128P2CRITICALCVSS 9.8fixed in 6.3.32021-12-07
CVE-2021-42128 [CRITICAL] CWE-749 CVE-2021-42128: An exposed dangerous function vulnerability exists in Ivanti Avalanche before 6.3.3 using inforail S An exposed dangerous function vulnerability exists in Ivanti Avalanche before 6.3.3 using inforail Service allows Privilege Escalation via Enterprise Server Service.
nvd
CVE-2024-37399P3HIGHCVSS 7.5v6.3.1v6.3.1.1507+12 more2024-08-14
CVE-2024-37399 [HIGH] CWE-476 CVE-2024-37399: A NULL pointer dereference in WLAvalancheService in Ivanti Avalanche 6.3.1 allows a remote unauthent A NULL pointer dereference in WLAvalancheService in Ivanti Avalanche 6.3.1 allows a remote unauthenticated attacker to crash the service, resulting in a DoS.
nvd
CVE-2024-27975P2HIGHCVSS 8.8fixed in 6.4.3.528≥ 6.4.3, < 6.4.32024-04-19
CVE-2024-27975 [HIGH] CWE-416 CVE-2024-27975: An Use-after-free vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3 all An Use-after-free vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.
nvd
CVE-2023-46265P3CRITICALCVSS 9.8≤ 6.4.1≥ 6.4.1, ≤ 6.4.12023-12-19
CVE-2023-46265 [CRITICAL] CWE-611 CVE-2023-46265: An unauthenticated could abuse a XXE vulnerability in the Smart Device Server to leak data or perfor An unauthenticated could abuse a XXE vulnerability in the Smart Device Server to leak data or perform a Server-Side Request Forgery (SSRF).
nvd
CVE-2024-50320P3HIGHCVSS 7.5fixed in 6.4.62024-11-12
CVE-2024-50320 [HIGH] CWE-835 CVE-2024-50320: An infinite loop in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to cause An infinite loop in Ivanti Avalanche before 6.4.6 allows a remote unauthenticated attacker to cause a denial of service.
nvd
CVE-2023-41474P3MEDIUMCVSS 6.5v6.3.4.1532024-01-25
CVE-2023-41474 [MEDIUM] CWE-22 CVE-2023-41474: Directory Traversal vulnerability in Ivanti Avalanche 6.3.4.153 allows a remote authenticated attack Directory Traversal vulnerability in Ivanti Avalanche 6.3.4.153 allows a remote authenticated attacker to obtain sensitive information via the javax.faces.resource component.
nvd
CVE-2024-24995P3HIGHCVSS 7.5fixed in 6.4.3.528≥ 6.4.3, < 6.4.32024-04-19
CVE-2024-24995 [HIGH] CWE-367 CVE-2024-24995: A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a r A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.
nvd
CVE-2024-24993P3HIGHCVSS 7.5fixed in 6.4.3.528≥ 6.4.3, < 6.4.32024-04-19
CVE-2024-24993 [HIGH] CWE-367 CVE-2024-24993: A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a r A Race Condition (TOCTOU) vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM.
nvd
CVE-2020-12442P3CRITICALCVSS 9.8v6.32020-04-28
CVE-2020-12442 [CRITICAL] CWE-89 CVE-2020-12442: Ivanti Avalanche 6.3 allows a SQL injection that is vaguely associated with the Apache HTTP Server, Ivanti Avalanche 6.3 allows a SQL injection that is vaguely associated with the Apache HTTP Server, aka Bug 683250.
nvd
CVE-2021-42126P3HIGHCVSS 8.8fixed in 6.3.32021-12-07
CVE-2021-42126 [HIGH] CWE-285 CVE-2021-42126: An improper authorization control vulnerability exists in Ivanti Avalanche before 6.3.3 allows an at An improper authorization control vulnerability exists in Ivanti Avalanche before 6.3.3 allows an attacker with access to the Inforail Service to perform privilege escalation.
nvd
CVE-2023-46266P3CRITICALCVSS 9.1≤ 6.4.1≥ 6.4.1, ≤ 6.4.12023-12-19
CVE-2023-46266 [CRITICAL] CVE-2023-46266: An attacker can send a specially crafted request which could lead to leakage of sensitive data or po An attacker can send a specially crafted request which could lead to leakage of sensitive data or potentially a resource-based DoS attack.
nvd
Ivanti Avalanche vulnerabilities | cvebase