How severe is CVE-2024-36136?

CVE-2024-36136 has a CVSS v3 score of 7.5 (HIGH).

CVE-2024-36136

Name: avalanche
Author: ivanti

7.5HIGH

An off-by-one error in WLInfoRailService in Ivanti Avalanche 6.3.1 allows a remote unauthenticated attacker to crash the service, resulting in a DoS.

Опубликовано: 8/14/2024Обновлено: 8/15/2024

Описание

An off-by-one error in WLInfoRailService in Ivanti Avalanche 6.3.1 allows a remote unauthenticated attacker to crash the service, resulting in a DoS.

ИИ-АнализНа базе ИИ

Затронутые продукты

ivantiavalanche

6.3.1

ivantiavalanche

6.3.1.1507

ivantiavalanche

6.3.2

ivantiavalanche

6.3.2

ivantiavalanche

6.3.2

ivantiavalanche

6.3.2.3490

ivantiavalanche

6.3.2.3490

ivantiavalanche

6.3.3

ivantiavalanche

6.3.3

ivantiavalanche

6.3.3.101

ivantiavalanche

6.3.3.101

ivantiavalanche

6.3.4

ivantiavalanche

6.3.4

ivantiavalanche

6.3.4.153

ivantiavalanche

6.4.0

ivantiavalanche

6.4.1

ivantiavalanche

6.4.1

ivantiavalanche

6.4.1.207

ivantiavalanche

6.4.1.236

ivantiavalanche

6.4.2

Ссылки

https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Avalanche-6-4-4-CVE-2024-38652-CVE-2024-38653-CVE-2024-36136-CVE-2024-37399-CVE-2024-37373
Vendor Advisory