Ivanti Avalanche vulnerabilities
117 known vulnerabilities affecting ivanti/avalanche.
Total CVEs
117
CISA KEV
0
Public exploits
5
Exploited in wild
3
Severity breakdown
CRITICAL47HIGH63MEDIUM7
Vulnerabilities
Page 5 of 6
CVE-2021-42124P3HIGHCVSS 8.8fixed in 6.3.32021-12-07
CVE-2021-42124 [HIGH] CWE-284 CVE-2021-42124: An improper access control vulnerability exists in Ivanti Avalanche before 6.3.3 allows an attacker
An improper access control vulnerability exists in Ivanti Avalanche before 6.3.3 allows an attacker with access to the Inforail Service to perform a session takeover.
nvd
CVE-2023-32566P3CRITICALCVSS 9.1fixed in 6.4.12023-08-10
CVE-2023-32566 [CRITICAL] CVE-2023-32566: An attacker can send a specially crafted request which could lead to leakage of sensitive data or po
An attacker can send a specially crafted request which could lead to leakage of sensitive data or potentially a resource-based DoS attack. Fixed in version 6.4.1.
nvd
CVE-2023-32565P3CRITICALCVSS 9.1fixed in 6.4.12023-08-10
CVE-2023-32565 [CRITICAL] CVE-2023-32565: An attacker can send a specially crafted request which could lead to leakage of sensitive data or po
An attacker can send a specially crafted request which could lead to leakage of sensitive data or potentially a resource-based DoS attack. Fixed in version 6.4.1.
nvd
CVE-2021-42133P3HIGHCVSS 8.1fixed in 6.3.32021-12-07
CVE-2021-42133 [HIGH] CWE-434 CVE-2021-42133: An exposed dangerous function vulnerability exists in Ivanti Avalanche before 6.3.3 allows an attack
An exposed dangerous function vulnerability exists in Ivanti Avalanche before 6.3.3 allows an attacker with access to the Inforail Service to perform an arbitrary file write.
nvd
CVE-2023-32567P3CRITICALCVSS 9.8fixed in 6.4.12023-08-10
CVE-2023-32567 [CRITICAL] CWE-611 CVE-2023-32567: Ivanti Avalanche decodeToMap XML External Entity Processing. Fixed in version 6.4.1.236
Ivanti Avalanche decodeToMap XML External Entity Processing. Fixed in version 6.4.1.236
nvd
CVE-2024-27977P3HIGHCVSS 8.1fixed in 6.4.3.528≥ 6.4.3, < 6.4.32024-04-19
CVE-2024-27977 [HIGH] CWE-22 CVE-2024-27977: A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote aut
A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to delete arbitrary files, thereby leading to Denial-of-Service.
nvd
CVE-2023-32561P3HIGHCVSS 7.5fixed in 6.4.12023-08-10
CVE-2023-32561 [HIGH] CWE-200 CVE-2023-32561: A previously generated artifact by an administrator could be accessed by an attacker. The contents o
A previously generated artifact by an administrator could be accessed by an attacker. The contents of this artifact could lead to authentication bypass. Fixed in version 6.4.1.
nvd
CVE-2024-23532P3HIGHCVSS 7.5fixed in 6.4.3.528≥ 6.4.3, < 6.4.32024-04-19
CVE-2024-23532 [HIGH] CWE-125 CVE-2024-23532: An out-of-bounds Read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3
An out-of-bounds Read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3 allows an authenticated remote attacker to perform denial of service attacks. In certain conditions this could also lead to remote code execution.
nvd
CVE-2025-8296P3HIGHCVSS 7.2fixed in 6.4.8.80082025-08-12
CVE-2025-8296 [HIGH] CWE-89 CVE-2025-8296: SQL injection in Ivanti Avalanche before version 6.4.8.8008 allows a remote authenticated attacker w
SQL injection in Ivanti Avalanche before version 6.4.8.8008 allows a remote authenticated attacker with admin privileges to execute arbitrary SQL queries. In certain conditions, this can also lead to remote code execution
nvd
CVE-2024-36136P3HIGHCVSS 7.5v6.3.1v6.3.1.1507+12 more2024-08-14
CVE-2024-36136 [HIGH] CWE-193 CVE-2024-36136: An off-by-one error in WLInfoRailService in Ivanti Avalanche 6.3.1 allows a remote unauthenticated a
An off-by-one error in WLInfoRailService in Ivanti Avalanche 6.3.1 allows a remote unauthenticated attacker to crash the service, resulting in a DoS.
nvd
CVE-2024-23527P3HIGHCVSS 7.5fixed in 6.4.3.528≥ 6.4.3, < 6.4.32024-04-25
CVE-2024-23527 [HIGH] CWE-125 CVE-2024-23527: An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3
An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3, in certain conditions can allow an unauthenticated remote attacker to read sensitive information in memory.
nvd
CVE-2024-23526P3HIGHCVSS 7.5fixed in 6.4.3.528≥ 6.4.3, < 6.4.32024-04-19
CVE-2024-23526 [HIGH] CWE-125 CVE-2024-23526: An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3
An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3, in certain conditions can allow an unauthenticated remote attacker to read sensitive information in memory.
nvd
CVE-2024-23529P3HIGHCVSS 7.5fixed in 6.4.3.528≥ 6.4.3, < 6.4.32024-04-19
CVE-2024-23529 [HIGH] CWE-125 CVE-2024-23529: An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3
An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3, in certain conditions can allow an unauthenticated remote attacker to read sensitive information in memory.
nvd
CVE-2024-23530P3HIGHCVSS 7.5fixed in 6.4.3.528≥ 6.4.3, < 6.4.32024-04-19
CVE-2024-23530 [HIGH] CWE-125 CVE-2024-23530: An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3
An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3, in certain conditions can allow an unauthenticated remote attacker to read sensitive information in memory.
nvd
CVE-2024-23528P3HIGHCVSS 7.5fixed in 6.4.3.528≥ 6.4.3, < 6.4.32024-04-19
CVE-2024-23528 [HIGH] CWE-125 CVE-2024-23528: An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3
An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3, in certain conditions can allow an unauthenticated remote attacker to read sensitive information in memory.
nvd
CVE-2025-8297P3HIGHCVSS 7.2fixed in 6.4.8.80082025-08-12
CVE-2025-8297 [HIGH] CWE-434 CVE-2025-8297: Incomplete restriction of configuration in Ivanti Avalanche before version 6.4.8.8008 allows a remot
Incomplete restriction of configuration in Ivanti Avalanche before version 6.4.8.8008 allows a remote authenticated attacker with admin privileges to achieve remote code execution
nvd
CVE-2023-46804P3HIGHCVSS 7.5fixed in 6.4.2≥ 6.4.1, ≤ 6.4.12023-12-19
CVE-2023-46804 [HIGH] CWE-787 CVE-2023-46804: An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corr
An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service (DoS).
nvd
CVE-2023-46803P3HIGHCVSS 7.5fixed in 6.4.2≥ 6.4.1, ≤ 6.4.12023-12-19
CVE-2023-46803 [HIGH] CWE-787 CVE-2023-46803: An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corr
An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service (DoS).
nvd
CVE-2024-37373P3HIGHCVSS 7.2v6.3.1v6.3.1.1507+12 more2024-08-14
CVE-2024-37373 [HIGH] CWE-20 CVE-2024-37373: Improper input validation in the Central Filestore in Ivanti Avalanche 6.3.1 allows a remote authent
Improper input validation in the Central Filestore in Ivanti Avalanche 6.3.1 allows a remote authenticated attacker with admin rights to achieve RCE.
nvd
CVE-2024-23531P3HIGHCVSS 7.5fixed in 6.4.3.528≥ 6.4.3, < 6.4.32024-04-19
CVE-2024-23531 [HIGH] CWE-190 CVE-2024-23531: An Integer Overflow vulnerability in WLInfoRailService component of Ivanti Avalanche before 6.4.3 al
An Integer Overflow vulnerability in WLInfoRailService component of Ivanti Avalanche before 6.4.3 allows an unauthenticated remote attacker to perform denial of service attacks. In certain rare conditions this could also lead to reading content from memory.
nvd