On April 16, 2024, Ivanti disclosed two critical vulnerabilities within its Avalanche Mobile Device Management (MDM) solution. These vulnerabilities, identified as CVE-2024-29204 and CVE-2024-24996, are heap overflow issues in the WLInfoRailService and WLAvalancheService components, respectively. Both vulnerabilities have been assigned a CVSS score of 9.8, indicating their critical nature due to the potential for unauthenticated … CVE-2024-29204, CVE-2024-24996: Critical Vulnerabilities in Ivanti Avalanche
Article Link: CVE-2024-29204 and CVE-2024-24996 | Arctic Wolf