An out-of-bounds read vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3, in certain conditions can allow an unauthenticated remote attacker to read sensitive information in memory. 
                
            References
                    Configurations
                    History
                    06 May 2025, 19:09
| Type | Values Removed | Values Added | 
|---|---|---|
| References | () https://forums.ivanti.com/s/article/Avalanche-6-4-3-Security-Hardening-and-CVEs-addressed?language=en_US - Vendor Advisory | |
| CVSS | v2 : v3 : | v2 : unknown v3 : 7.5 | 
| CPE | cpe:2.3:a:ivanti:avalanche:*:*:*:*:*:*:*:* | |
| First Time | Ivanti Ivanti avalanche | 
21 Nov 2024, 08:57
| Type | Values Removed | Values Added | 
|---|---|---|
| References | () https://forums.ivanti.com/s/article/Avalanche-6-4-3-Security-Hardening-and-CVEs-addressed?language=en_US - | 
03 Jul 2024, 01:47
| Type | Values Removed | Values Added | 
|---|---|---|
| CWE | CWE-125 | 
19 Apr 2024, 13:10
| Type | Values Removed | Values Added | 
|---|---|---|
| Summary | 
 | 
19 Apr 2024, 02:15
| Type | Values Removed | Values Added | 
|---|---|---|
| New CVE | 
Information
                Published : 2024-04-19 02:15
Updated : 2025-05-06 19:09
NVD link : CVE-2024-23530
Mitre link : CVE-2024-23530
CVE.ORG link : CVE-2024-23530
JSON object : View
Products Affected
                ivanti
- avalanche
CWE
                
                    
                        
                        CWE-125
                        
            Out-of-bounds Read
