Filters

Versions

6.3.2.3490
11
6.3.3.101
3
6.4.1
3
6.3.1
2
6.3
1
6.3.1.1507
1
6.3.2
1
6.3.3
1
6.3.4
1
6.3.4.153
1
6.4.0
1
6.4.1.207
1
6.4.1.236
1
6.4.2
1
6.4.2.313
1

Ivanti AvalanchePath Traversal

critical
9.8
First published (updated )
CVE-2024-47010

Ivanti AvalanchePath Traversal

critical
9.8
First published (updated )
CVE-2024-47009

Ivanti AvalanchePath Traversal

critical
9.1
First published (updated )
CVE-2024-38652

Ivanti Endpoint ManagerSQL Injection

critical
9.6
First published (updated )
CVE-2023-39336

Ivanti AvalancheAn attacker sending specially crafted data packets to the Mobile Device Server can cause memory corr…

critical
9.8
First published (updated )
CVE-2023-46260

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Ivanti AvalancheAn attacker sending specially crafted data packets to the Mobile Device Server can cause memory corr…

critical
9.8
First published (updated )
CVE-2023-46220

Ivanti AvalancheAn attacker sending specially crafted data packets to the Mobile Device Server can cause memory corr…

critical
9.8
First published (updated )
CVE-2023-46259

Ivanti AvalancheAn attacker sending specially crafted data packets to the Mobile Device Server can cause memory corr…

critical
9.8
First published (updated )
CVE-2023-46222

Ivanti AvalancheMalicious File Upload

critical
9.8
First published (updated )
CVE-2023-46264

Ivanti AvalancheAn attacker sending specially crafted data packets to the Mobile Device Server can cause memory corr…

critical
9.8
First published (updated )
CVE-2023-46217

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Ivanti AvalancheAn attacker sending specially crafted data packets to the Mobile Device Server can cause memory corr…

critical
9.8
First published (updated )
CVE-2023-46221

Ivanti AvalancheAn attacker sending specially crafted data packets to the Mobile Device Server can cause memory corr…

critical
9.8
First published (updated )
CVE-2023-41727

Ivanti AvalancheAn attacker sending specially crafted data packets to the Mobile Device Server can cause memory corr…

critical
9.8
First published (updated )
CVE-2023-46258

Ivanti AvalancheMalicious File Upload

critical
9.8
First published (updated )
CVE-2023-46263

Ivanti AvalancheAn attacker can send a specially crafted request which could lead to leakage of sensitive data or po…

critical
9.1
First published (updated )
CVE-2021-22962

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Ivanti AvalancheAn attacker sending specially crafted data packets to the Mobile Device Server can cause memory corr…

critical
9.8
First published (updated )
CVE-2023-46261

CVE-2023-46223An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corr…

critical
9.8
First published (updated )
CVE-2023-46223

Ivanti AvalancheAn attacker can send a specially crafted request which could lead to leakage of sensitive data or po…

critical
9.1
First published (updated )
CVE-2023-46266

Ivanti AvalancheSSRF, XEE

critical
9.8
First published (updated )
CVE-2023-46265

Ivanti AvalancheAn attacker sending specially crafted data packets to the Mobile Device Server can cause memory corr…

critical
9.8
First published (updated )
CVE-2023-46257

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Ivanti AvalancheAn attacker sending specially crafted data packets to the Mobile Device Server can cause memory corr…

critical
9.8
First published (updated )
CVE-2023-46225

Ivanti AvalancheAn attacker sending specially crafted data packets to the Mobile Device Server can cause memory corr…

critical
9.8
First published (updated )
CVE-2023-46224

Ivanti AvalancheAn attacker sending specially crafted data packets to the Mobile Device Server can cause memory corr…

critical
9.8
First published (updated )
CVE-2023-46216

Ivanti AvalancheBuffer Overflow

critical
9.8
Exploited
First published (updated )
CVE-2023-32560

Ivanti AvalancheMalicious File Upload

critical
9.8
First published (updated )
CVE-2023-32562

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Ivanti AvalanchePath Traversal

critical
9.8
First published (updated )
CVE-2023-32563

Ivanti AvalancheMalicious File Upload

critical
9.8
First published (updated )
CVE-2023-32564

Ivanti AvalancheAn attacker can send a specially crafted request which could lead to leakage of sensitive data or po…

critical
9.1
First published (updated )
CVE-2023-32565

Ivanti AvalancheAn attacker can send a specially crafted request which could lead to leakage of sensitive data or po…

critical
9.1
First published (updated )
CVE-2023-32566

Ivanti AvalancheXEE

critical
9.8
First published (updated )
CVE-2023-32567

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Ivanti AvalancheIvanti Avalanche DeviceLogResource Directory Traversal Remote Code Execution Vulnerability

critical
9.8
First published (updated )
CVE-2022-36981

Ivanti AvalancheIvanti Avalanche SetSettings Exposed Dangerous Function Authentication Bypass Vulnerability

critical
9.8
First published (updated )
CVE-2022-36983

Ivanti AvalancheIvanti Avalanche Certificate Management Server Service Deserialization of Untrusted Data Remote Code Execution Vulnerability

critical
9.8
First published (updated )
CVE-2022-36977

Ivanti AvalancheIvanti Avalanche EnterpriseServer Service SQL Injection Authentication Bypass Vulnerability

critical
9.8
First published (updated )
CVE-2022-36979

Ivanti AvalancheIvanti Avalanche Notification Server Service Deserialization of Untrusted Data Remote Code Execution Vulnerability

critical
9.8
First published (updated )
CVE-2022-36978

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Ivanti AvalancheIvanti Avalanche EnterpriseServer Service SQL Injection Authentication Bypass Vulnerability

critical
9.8
First published (updated )
CVE-2022-36972

Ivanti AvalancheIvanti Avalanche EnterpriseServer Service Race Condition Authentication Bypass Vulnerability

critical
9.4
First published (updated )
CVE-2022-36980

Ivanti AvalancheIvanti Avalanche EnterpriseServer Service SQL Injection Authentication Bypass Vulnerability

critical
9.1
First published (updated )
CVE-2022-36973

Ivanti AvalancheIvanti Avalanche JwtTokenUtility Deserialization of Untrusted Data Remote Code Execution Vulnerability

critical
9.8
First published (updated )
CVE-2022-36971

Ivanti AvalancheIvanti Avalanche Web File Server Service Deserialization of Untrusted Data Remote Code Execution Vulnerability

critical
9.8
First published (updated )
CVE-2022-36974

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Ivanti AvalancheIvanti Avalanche EnterpriseServer Service SQL Injection Authentication Bypass Vulnerability

critical
9.8
First published (updated )
CVE-2022-36975

Ivanti AvalancheIvanti Avalanche EnterpriseServer Service SQL Injection Authentication Bypass Vulnerability

critical
9.8
First published (updated )
CVE-2022-36976

Ivanti AvalancheAn exposed dangerous function vulnerability exists in Ivanti Avalanche before 6.3.3 using inforail S…

critical
9.8
First published (updated )
CVE-2021-42128

Ivanti AvalancheA deserialization of untrusted data vulnerability exists in Ivanti Avalanche before 6.3.3 using Info…

critical
9.8
First published (updated )
CVE-2021-42127

Ivanti AvalancheSQL Injection

critical
9.8
First published (updated )
CVE-2020-12442

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Ivanti AvalancheIvanti Avalanche JwtTokenUtility Deserialization of Untrusted Data Remote Code Execution Vulnerability

critical
9.8
ZDI-22-776

Ivanti AvalancheIvanti Avalanche JwtTokenUtility Deserialization of Untrusted Data Remote Code Execution Vulnerability

critical
9.8
ZDI-CAN-15301

Ivanti AvalancheIvanti Avalanche EnterpriseServer Service Race Condition Authentication Bypass Vulnerability

critical
9.4
ZDI-22-785

Ivanti AvalancheIvanti Avalanche EnterpriseServer Service Race Condition Authentication Bypass Vulnerability

critical
9.4
ZDI-CAN-15528

Ivanti AvalancheIvanti Avalanche EnterpriseServer Service SQL Injection Authentication Bypass Vulnerability

critical
9.1
ZDI-22-780

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203