Multiple Vulnerabilities in Ivanti Avalanche Could Allow for Authentication Bypass

Read Time:32 Second

Multiple Vulnerabilities have been discovered in Ivanti Avalanche, the most severe of which could allow for authentication bypass. Ivanti Avalanche is a mobile device management system. Network security features allow one to manage wireless settings (including encryption and authentication) and apply those settings on a schedule throughout the network. Successful exploitation could allow for a remote unauthenticated attacker to bypass authentication. Depending on the privileges associated with the logged-on user, an attacker could then install programs; view, change, or delete data. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.

Google Releases April Android Update to Address Two Zero-Days

NIST Defers Pre-2018 CVEs to Tackle Growing Vulnerability Backlog

Half of Firms Stall Digital Projects as Cyber Warfare Risk Surges

CISA Warns of CrushFTP Vulnerability Exploitation in the Wild

Arguing Against CALEA

Boards Urged to Follow New Cyber Code of Practice

Russian bots hard at work spreading political unrest on Romania’s internet

Malicious Microsoft VS Code Extensions Used in Cryptojacking Campaign

Smishing Triad Fuels Surge in Toll Payment Scams in US, UK

Multiple Vulnerabilities in Ivanti Avalanche Could Allow for Authentication Bypass

workrave-1.11.0~rc.1-1.el9

workrave-1.11.0~rc.1-1.fc41

workrave-1.11.0~rc.1-1.fc42

workrave-1.11.0~rc.1-1.fc40

trunk-0.21.13-1.fc41

trunk-0.21.13-1.fc42