A security vulnerability within Ivanti Avalanche Manager before version 6.4.1 may allow an unauthenticated attacker to create a buffer overflow that could result in service disruption or arbitrary code execution.
An attacker without any privileges can send specially crafted data to Ivanti Avalanche Manager, triggering a buffer overflow (buffer overflow, CWE-120). As a result of exceeding the boundaries of the allocated buffer memory, it is possible to overwrite critical data structures or execution pointers. This leads to service destabilization or hijacking control over the process execution flow, opening the way for arbitrary code execution.
An attacker can cause service disruption (DoS) or execute arbitrary code on the server (RCE) with the privileges of the Ivanti Avalanche Manager process, thereby gaining full control over the vulnerable system.
Ivanti Avalanche Manager should be updated to version 6.4.1 or later. Detailed information about the update is available in the official Ivanti security bulletin at the address indicated in the references.
Ivanti Avalanche Manager in versions earlier than 6.4.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HIvanti Avalanche
APPIvanti< 6.4.1
Related vulnerabilities
Path Traversal w Ivanti Avalanche — nieuprawnione usuwanie plików i DoS
Heap Overflow w Ivanti Avalanche umożliwia zdalne wykonanie kodu
Heap Overflow w Ivanti Avalanche umożliwiający RCE bez uwierzytelnienia
Heap overflow w Ivanti Avalanche umożliwia zdalne wykonanie kodu
Ivanti Avalanche Mobile Device Server — RCE i DoS przez uszkodzenie pamięci