How severe is CVE-2024-36136?

CVE-2024-36136 has a CVSS v3 score of 7.5 (HIGH).

CVE-2024-36136

Name: avalanche
Author: ivanti

7.5HIGH

An off-by-one error in WLInfoRailService in Ivanti Avalanche 6.3.1 allows a remote unauthenticated attacker to crash the service, resulting in a DoS.

Veröffentlicht: 8/14/2024Aktualisiert: 8/15/2024

Beschreibung

An off-by-one error in WLInfoRailService in Ivanti Avalanche 6.3.1 allows a remote unauthenticated attacker to crash the service, resulting in a DoS.

KI-AnalyseKI-gestützt

Betroffene Produkte

ivantiavalanche

6.3.1

ivantiavalanche

6.3.1.1507

ivantiavalanche

6.3.2

ivantiavalanche

6.3.2

ivantiavalanche

6.3.2

ivantiavalanche

6.3.2.3490

ivantiavalanche

6.3.2.3490

ivantiavalanche

6.3.3

ivantiavalanche

6.3.3

ivantiavalanche

6.3.3.101

ivantiavalanche

6.3.3.101

ivantiavalanche

6.3.4

ivantiavalanche

6.3.4

ivantiavalanche

6.3.4.153

ivantiavalanche

6.4.0

ivantiavalanche

6.4.1

ivantiavalanche

6.4.1

ivantiavalanche

6.4.1.207

ivantiavalanche

6.4.1.236

ivantiavalanche

6.4.2

Referenzen

https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Avalanche-6-4-4-CVE-2024-38652-CVE-2024-38653-CVE-2024-36136-CVE-2024-37399-CVE-2024-37373
Vendor Advisory