CVE-2024-29204 - A Heap Overflow vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3 allow

CVE-2024-29204

Summary

A Heap Overflow vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3 allows a remote unauthenticated attacker to execute arbitrary commands

References

https://forums.ivanti.com/s/article/Avalanche-6-4-3-Security-Hardening-and-CVEs-addressed?language=en_US

Vulnerable Configurations

CVSS

Base:	None
Impact:
Exploitability:

Access

Vector	Complexity	Authentication

Impact

Confidentiality	Integrity	Availability

Last major update

03-07-2024 - 01:52

Published

19-04-2024 - 02:15

Last modified

03-07-2024 - 01:52