Show filters
423 Total Results
Displaying 221-230 of 423
Sort by:
Attacker Value
Unknown

CVE-2024-23532

Disclosure Date: April 19, 2024 (last updated April 19, 2024)
An out-of-bounds Read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3 allows an authenticated remote attacker to perform denial of service attacks. In certain conditions this could also lead to remote code execution.
0
0
Attacker Value
Unknown

CVE-2024-23531

Disclosure Date: April 19, 2024 (last updated April 19, 2024)
An Integer Overflow vulnerability in WLInfoRailService component of Ivanti Avalanche before 6.4.3 allows an unauthenticated remote attacker to perform denial of service attacks. In certain rare conditions this could also lead to reading content from memory.
0
0
Attacker Value
Unknown

CVE-2024-23530

Disclosure Date: April 19, 2024 (last updated April 19, 2024)
An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3, in certain conditions can allow an unauthenticated remote attacker to read sensitive information in memory.
0
0
Attacker Value
Unknown

CVE-2024-23529

Disclosure Date: April 19, 2024 (last updated April 19, 2024)
An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3, in certain conditions can allow an unauthenticated remote attacker to read sensitive information in memory.
0
0
Attacker Value
Unknown

CVE-2024-23528

Disclosure Date: April 19, 2024 (last updated April 19, 2024)
An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3, in certain conditions can allow an unauthenticated remote attacker to read sensitive information in memory.
0
0
Attacker Value
Unknown

CVE-2024-23526

Disclosure Date: April 19, 2024 (last updated April 19, 2024)
An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3, in certain conditions can allow an unauthenticated remote attacker to read sensitive information in memory.
0
0
Attacker Value
Unknown

CVE-2024-22061

Disclosure Date: April 19, 2024 (last updated April 19, 2024)
A Heap Overflow vulnerability in WLInfoRailService component of Ivanti Avalanche before 6.4.3 allows a remote unauthenticated attacker to execute arbitrary commands
0
0
Attacker Value
Unknown

CVE-2024-21894

Disclosure Date: April 04, 2024 (last updated April 10, 2024)
A heap overflow vulnerability in IPSec component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure allows an unauthenticated malicious user to send specially crafted requests in-order-to crash the service thereby causing a DoS attack. In certain conditions this may lead to execution of arbitrary code
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-22053

Disclosure Date: April 04, 2024 (last updated April 10, 2024)
A heap overflow vulnerability in IPSec component of Ivanti Connect Secure (9.x 22.x) and Ivanti Policy Secure allows an unauthenticated malicious user to send specially crafted requests in-order-to crash the service thereby causing a DoS attack or in certain conditions read contents from memory.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-22052

Disclosure Date: April 04, 2024 (last updated April 10, 2024)
A null pointer dereference vulnerability in IPSec component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure allows an unauthenticated malicious user to send specially crafted requests in-order-to crash the service thereby causing a DoS attack
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
View More Topics  < Previous  Next >