Vulnerabilities > Ivanti > Avalanche > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-08-10 CVE-2023-32566 Unspecified vulnerability in Ivanti Avalanche
An attacker can send a specially crafted request which could lead to leakage of sensitive data or potentially a resource-based DoS attack.
network
low complexity
ivanti
critical
 9.1
9.1
2023-03-29 CVE-2022-36983 Unspecified vulnerability in Ivanti Avalanche 6.3.3.101
This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche.
network
low complexity
ivanti
critical
 9.8
9.8
2023-03-29 CVE-2022-36981 Unspecified vulnerability in Ivanti Avalanche 6.3.3.101
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Avalanche 6.3.3.101.
network
low complexity
ivanti
critical
 9.8
9.8
2023-03-29 CVE-2022-36979 Unspecified vulnerability in Ivanti Avalanche 6.3.2.3490/6.3.3/6.3.3.101
This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490.
network
low complexity
ivanti
critical
 9.8
9.8
2023-03-29 CVE-2022-36978 Unspecified vulnerability in Ivanti Avalanche 6.3.2.3490/6.3.3/6.3.3.101
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Avalanche 6.3.2.3490.
network
low complexity
ivanti
critical
 9.8
9.8
2023-03-29 CVE-2022-36977 Unspecified vulnerability in Ivanti Avalanche 6.3.2.3490/6.3.3/6.3.3.101
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Avalanche 6.3.2.3490.
network
low complexity
ivanti
critical
 9.8
9.8
2023-03-29 CVE-2022-36976 Unspecified vulnerability in Ivanti Avalanche 6.3.2.3490/6.3.3/6.3.3.101
This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490.
network
low complexity
ivanti
critical
 9.8
9.8
2023-03-29 CVE-2022-36975 Unspecified vulnerability in Ivanti Avalanche 6.3.2.3490/6.3.3/6.3.3.101
This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490.
network
low complexity
ivanti
critical
 9.8
9.8
2023-03-29 CVE-2022-36974 Unspecified vulnerability in Ivanti Avalanche 6.3.2.3490/6.3.3/6.3.3.101
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Avalanche 6.3.2.3490.
network
low complexity
ivanti
critical
 9.8
9.8
2023-03-29 CVE-2022-36972 Unspecified vulnerability in Ivanti Avalanche 6.3.2.3490/6.3.3/6.3.3.101
This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490.
network
low complexity
ivanti
critical
 9.8
9.8