Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Avalanche
(Ivanti)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 114 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-11-03 | CVE-2023-41725 | Ivanti Avalanche EnterpriseServer Service Unrestricted File Upload Local Privilege Escalation Vulnerability | Avalanche | 7.8 | ||
| 2023-11-03 | CVE-2023-41726 | Ivanti Avalanche Incorrect Default Permissions allows Local Privilege Escalation Vulnerability | Avalanche | 7.8 | ||
| 2023-12-19 | CVE-2021-22962 | An attacker can send a specially crafted request which could lead to leakage of sensitive data or potentially a resource-based DoS attack. | Avalanche | 9.1 | ||
| 2023-12-19 | CVE-2023-46216 | An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service (DoS) or code execution. | Avalanche | 9.8 | ||
| 2023-12-19 | CVE-2023-46217 | An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service (DoS) or code execution. | Avalanche | 9.8 | ||
| 2023-12-19 | CVE-2023-46221 | An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service (DoS) or code execution. | Avalanche | 9.8 | ||
| 2023-12-19 | CVE-2023-46220 | An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service (DoS) or code execution. | Avalanche | 9.8 | ||
| 2023-12-19 | CVE-2023-46222 | An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service (DoS) or code execution. | Avalanche | 9.8 | ||
| 2023-12-19 | CVE-2023-46223 | An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service (DoS) or code execution. | Avalanche | 9.8 | ||
| 2023-12-19 | CVE-2023-46224 | An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service (DoS) or code execution. | Avalanche | 9.8 |