CVE-2023-46804

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Dec 19, 2023

Updated: Dec 21, 2023

CWE ID 787

Summary

CVE-2023-46804 is a newly disclosed vulnerability that affects the Mobile Device Server. An attacker can exploit this issue by sending tailored data packets to the server, leading to memory corruption. This corruption, in turn, may trigger a Denial of Service (DoS) condition, making the server unresponsive and inaccessible to legitimate users. The vulnerability poses a risk to system availability and requires immediate attention from system administrators to mitigate the threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Ivanti Avalanche

Affected Vendors

Ivanti Software Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tKG6uX
https://www.cve.org/CVERecord?id=CVE-2023-46804
https://nvd.nist.gov/vuln/detail/CVE-2023-46804

Back to Vulnerability Database