Vulnerability CVE-2023-32560
Published: 2023-08-10

Description:
An attacker can send a specially crafted message to the Wavelink Avalanche Manager, which could result in service disruption or arbitrary code execution.

Thanks to a Researcher at Tenable for finding and reporting.

Fixed in version 6.4.1.

See advisories in our WLB2 database:
Topic
Author
Date
High
Ivanti Avalance Remote Code Execution
Robel Campbell
04.09.2023

 References:
https://forums.ivanti.com/s/article/Avalanche-Vulnerabilities-Addressed-in-6-4-1?language=en_US
Copyright 2024, cxsecurity.com

 

Back to Top