CVE-2023-46225

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 19, 2023

Updated: Dec 21, 2023

CWE ID 787

Summary

CVE-2023-46225 is a newly identified vulnerability that puts Mobile Device Servers at risk. Attackers can exploit this issue by sending maliciously crafted data packets, leading to memory corruption. The consequences of this vulnerability can range from a Denial of Service (DoS) attack to potentially more serious code execution. This vulnerability poses a significant threat and requires immediate attention and patches to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Ivanti Avalanche

Affected Vendors

Ivanti Software Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tD7X-D
https://www.cve.org/CVERecord?id=CVE-2023-46225
https://nvd.nist.gov/vuln/detail/CVE-2023-46225

Back to Vulnerability Database