How severe is CVE-2024-36136?

CVE-2024-36136 has a CVSS v3 score of 7.5 (HIGH).

CVE-2024-36136

Name: avalanche
Author: ivanti

7.5HIGH

An off-by-one error in WLInfoRailService in Ivanti Avalanche 6.3.1 allows a remote unauthenticated attacker to crash the service, resulting in a DoS.

Publicado: 8/14/2024Actualizado: 8/15/2024

Descripción

An off-by-one error in WLInfoRailService in Ivanti Avalanche 6.3.1 allows a remote unauthenticated attacker to crash the service, resulting in a DoS.

Análisis IAImpulsado por IA

Productos Afectados

ivantiavalanche

6.3.1

ivantiavalanche

6.3.1.1507

ivantiavalanche

6.3.2

ivantiavalanche

6.3.2

ivantiavalanche

6.3.2

ivantiavalanche

6.3.2.3490

ivantiavalanche

6.3.2.3490

ivantiavalanche

6.3.3

ivantiavalanche

6.3.3

ivantiavalanche

6.3.3.101

ivantiavalanche

6.3.3.101

ivantiavalanche

6.3.4

ivantiavalanche

6.3.4

ivantiavalanche

6.3.4.153

ivantiavalanche

6.4.0

ivantiavalanche

6.4.1

ivantiavalanche

6.4.1

ivantiavalanche

6.4.1.207

ivantiavalanche

6.4.1.236

ivantiavalanche

6.4.2

Referencias

https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Avalanche-6-4-4-CVE-2024-38652-CVE-2024-38653-CVE-2024-36136-CVE-2024-37399-CVE-2024-37373
Vendor Advisory