CRITICAL🇵🇱 Wersja polska

CVE-2024-24996

CVSS 9.8v3.1pub. 2024-04-19upd. 2025-05-06

A Heap overflow vulnerability in WLInfoRailService component of Ivanti Avalanche before 6.4.3 allows an unauthenticated remote attacker to execute arbitrary commands.

🤖 AI Analysis
How it works

The vulnerability is a heap buffer overflow (CWE-122) in the WLInfoRailService component. An attacker can send specially crafted network data to the vulnerable component without any authentication. The overflow allows overwriting critical memory structures and directing code execution in a direction controlled by the attacker.

Impact

An unauthenticated remote attacker can execute arbitrary commands on the vulnerable system, which in practice means the ability to fully take control of the Ivanti Avalanche server, steal data, and perform further actions within the victim's infrastructure.

Mitigation & patch

Ivanti Avalanche must be urgently updated to version 6.4.3 or newer. Detailed information is available in the official vendor bulletin: https://forums.ivanti.com/s/article/Avalanche-6-4-3-Security-Hardening-and-CVEs-addressed

Who is affected

Ivanti Avalanche versions earlier than 6.4.3

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Ivanti Avalanche

    APP
    Ivanti
    < 6.4.3.528
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Memory
CWE
References

Related vulnerabilities

CVE-2023-38036CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w Ivanti Avalanche Manager umożliwiający RCE bez uwierzytelnienia

CVE-2024-38652CRITICAL9.1PL ✓ten sam produkt

Path Traversal w Ivanti Avalanche — nieuprawnione usuwanie plików i DoS

CVE-2024-22061CRITICAL9.8PL ✓ten sam produkt

Heap Overflow w Ivanti Avalanche umożliwiający RCE bez uwierzytelnienia

CVE-2024-29204CRITICAL9.8PL ✓ten sam produkt

Heap Overflow w Ivanti Avalanche umożliwia zdalne wykonanie kodu

CVE-2023-46216CRITICAL9.8PL ✓ten sam produkt

Ivanti Avalanche — RCE/DoS przez korupcję pamięci w Mobile Device Server