Multiple Vulnerabilities have been discovered in Ivanti Avalanche, the most severe of which could allow for authentication bypass. Ivanti Avalanche is a mobile device management system. Network security features allow one to manage wireless settings (including encryption and authentication) and apply those settings on a schedule throughout the network. Successful exploitation could allow for a remote unauthenticated attacker to bypass authentication. Depending on the privileges associated with the logged-on user, an attacker could then install programs; view, change, or delete data. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
More Stories
Kubernetes Ingress-nginx Controller RCE
What is the Vulnerability?On March 24, researchers disclosed a set of five vulnerabilities, collectively known as "IngressNightmare,” affecting Ingress-nginx, one...
perl-Compress-Raw-Lzma-2.212-6.fc41 xz-5.8.1-1.fc41.1
FEDORA-2025-051becf4f2 Packages in this update: perl-Compress-Raw-Lzma-2.212-6.fc41 xz-5.8.1-1.fc41.1 Update description: xz 5.8.1 Read More
perl-Compress-Raw-Lzma-2.209-9.fc40 xz-5.8.1-1.1.fc40
FEDORA-2025-4871b31998 Packages in this update: perl-Compress-Raw-Lzma-2.209-9.fc40 xz-5.8.1-1.1.fc40 Update description: xz 5.8.1 Read More
xz-5.8.1-1.fc40
FEDORA-2025-258ab1c008 Packages in this update: xz-5.8.1-1.fc40 Update description: New upstream version 5.8.1 Read More
xz-5.8.1-1.fc41
FEDORA-2025-fec4b37bc7 Packages in this update: xz-5.8.1-1.fc41 Update description: New upstream version 5.8.1 Read More
xz-5.8.1-1.fc42
FEDORA-2025-76264ecf04 Packages in this update: xz-5.8.1-1.fc42 Update description: New upstream version 5.8.1 Read More