CVE-2023-35077
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Jul 21, 2023
Updated: Jul 31, 2023
CWE ID 787
Summary
CVE-2023-35077 is an out-of-bounds write vulnerability affecting Ivanti AntiVirus on Windows operating systems. This issue allows an attacker to cause the Ivanti AV product to crash by writing beyond the allocated memory. Successful exploitation could lead to denial-of-service conditions or potential code injection. Users are advised to update their Ivanti AV Product to version 7.9.1.285 or above to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share