CRITICAL✓ PATCH🇵🇱 Wersja polska

CVE-2023-38036

CVSS 9.8v3.1pub. 2025-07-12upd. 2025-07-17

A security vulnerability within Ivanti Avalanche Manager before version 6.4.1 may allow an unauthenticated attacker to create a buffer overflow that could result in service disruption or arbitrary code execution.

🤖 AI Analysis
How it works

An attacker without any privileges can send specially crafted data to Ivanti Avalanche Manager, triggering a buffer overflow (buffer overflow, CWE-120). As a result of exceeding the boundaries of the allocated buffer memory, it is possible to overwrite critical data structures or execution pointers. This leads to service destabilization or hijacking control over the process execution flow, opening the way for arbitrary code execution.

Impact

An attacker can cause service disruption (DoS) or execute arbitrary code on the server (RCE) with the privileges of the Ivanti Avalanche Manager process, thereby gaining full control over the vulnerable system.

Mitigation & patch

Ivanti Avalanche Manager should be updated to version 6.4.1 or later. Detailed information about the update is available in the official Ivanti security bulletin at the address indicated in the references.

Who is affected

Ivanti Avalanche Manager in versions earlier than 6.4.1

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Ivanti Avalanche

    APP
    Ivanti
    < 6.4.1
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
RCEAuth BypassMemory
CWE
References

Related vulnerabilities

CVE-2024-38652CRITICAL9.1PL ✓ten sam produkt

Path Traversal w Ivanti Avalanche — nieuprawnione usuwanie plików i DoS

CVE-2024-29204CRITICAL9.8PL ✓ten sam produkt

Heap Overflow w Ivanti Avalanche umożliwia zdalne wykonanie kodu

CVE-2024-22061CRITICAL9.8PL ✓ten sam produkt

Heap Overflow w Ivanti Avalanche umożliwiający RCE bez uwierzytelnienia

CVE-2024-24996CRITICAL9.8PL ✓ten sam produkt

Heap overflow w Ivanti Avalanche umożliwia zdalne wykonanie kodu

CVE-2023-46217CRITICAL9.8PL ✓ten sam produkt

Ivanti Avalanche Mobile Device Server — RCE i DoS przez uszkodzenie pamięci

CVE-2023-38036 — Ivanti — Avalanche — CRITICAL — CVSS 9.8 | CVEbaza.pl