CVE-2024-24996 | Ivanti Avalanche up to 6.4.2 WLInfoRailService heap-based overflow

April 19, 2024

A vulnerability classified as very critical was found in Ivanti Avalanche up to 6.4.2. This vulnerability affects unknown code of the component WLInfoRailService. The manipulation leads to heap-based buffer overflow.

This vulnerability was named CVE-2024-24996. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More