CRITICAL🇵🇱 Wersja polska

CVE-2024-29204

CVSS 9.8v3.1pub. 2024-04-19upd. 2025-05-06

A Heap Overflow vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3 allows a remote unauthenticated attacker to execute arbitrary commands

🤖 AI Analysis
How it works

The vulnerability results from a heap buffer overflow error (heap overflow, CWE-122) in the WLAvalancheService component. An attacker can send a specially crafted network request to the vulnerable service without any authentication. The heap buffer overflow allows overwriting critical data structures in the process memory, which ultimately enables taking control of its execution and running arbitrary code.

Impact

An unauthenticated remote attacker can execute arbitrary system commands on the server, which in practice means complete takeover of the vulnerable system, data disclosure, modification or destruction.

Mitigation & patch

Ivanti Avalanche should be updated to version 6.4.3 or newer. Detailed information about available patches is available in the official security bulletin from the vendor: https://forums.ivanti.com/s/article/Avalanche-6-4-3-Security-Hardening-and-CVEs-addressed

Who is affected

Ivanti Avalanche in all versions before 6.4.3 (WLAvalancheService component)

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Ivanti Avalanche

    APP
    Ivanti
    < 6.4.3.528
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth BypassMemory
CWE
References

Related vulnerabilities

CVE-2023-38036CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w Ivanti Avalanche Manager umożliwiający RCE bez uwierzytelnienia

CVE-2024-38652CRITICAL9.1PL ✓ten sam produkt

Path Traversal w Ivanti Avalanche — nieuprawnione usuwanie plików i DoS

CVE-2024-22061CRITICAL9.8PL ✓ten sam produkt

Heap Overflow w Ivanti Avalanche umożliwiający RCE bez uwierzytelnienia

CVE-2024-24996CRITICAL9.8PL ✓ten sam produkt

Heap overflow w Ivanti Avalanche umożliwia zdalne wykonanie kodu

CVE-2023-46216CRITICAL9.8PL ✓ten sam produkt

Ivanti Avalanche — RCE/DoS przez korupcję pamięci w Mobile Device Server