Multiple vital safety flaws have been present in Ivanti Avalanche, an enterprise cell system administration resolution utilized by 30,000 organizations. The vulnerabilities, tracked as CVE-2023-32560, are stack-based buffer overflows in a particular part of the software program. Tenable, a cybersecurity firm, defined that these flaws happen when processing sure information sorts, permitting an unauthenticated distant attacker to overflow the buffer and probably obtain code execution or system crash. Ivanti has launched a brand new model, 6.4.1, that addresses these vulnerabilities as properly as six different flaws that would permit authentication bypass and distant code execution. It is essential for customers to replace their software program promptly to guard in opposition to these potential threats.
Source hyperlink