Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2024-36136

Summary
Assigner-hackerone
Assigner Org ID-36234546-b8fa-4601-9d6f-f4e334aa8ea1
Published At-14 Aug, 2024 | 02:38
Updated At-14 Aug, 2024 | 13:57
Rejected At-
Credits

An off-by-one error in WLInfoRailService in Ivanti Avalanche 6.3.1 allows a remote unauthenticated attacker to crash the service, resulting in a DoS.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
â–¼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:hackerone
Assigner Org ID:36234546-b8fa-4601-9d6f-f4e334aa8ea1
Published At:14 Aug, 2024 | 02:38
Updated At:14 Aug, 2024 | 13:57
Rejected At:
â–¼CVE Numbering Authority (CNA)

An off-by-one error in WLInfoRailService in Ivanti Avalanche 6.3.1 allows a remote unauthenticated attacker to crash the service, resulting in a DoS.

Affected Products
Vendor
Ivanti SoftwareIvanti
Product
Avalanche
Default Status
unaffected
Versions
Affected
  • From 6.4.4 before 6.4.4 (semver)
Metrics
VersionBase scoreBase severityVector
3.07.5HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Version: 3.0
Base score: 7.5
Base severity: HIGH
Vector:
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Avalanche-6-4-4-CVE-2024-38652-CVE-2024-38653-CVE-2024-36136-CVE-2024-37399-CVE-2024-37373
N/A
Hyperlink: https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Avalanche-6-4-4-CVE-2024-38652-CVE-2024-38653-CVE-2024-36136-CVE-2024-37399-CVE-2024-37373
Resource: N/A
â–¼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Vendor
Ivanti Softwareivanti
Product
avalanche
CPEs
  • cpe:2.3:a:ivanti:avalanche:*:*:*:*:*:*:*:*
Default Status
unaffected
Versions
Affected
  • From 6.3.1 before 6.4.4 (custom)
Problem Types
TypeCWE IDDescription
CWECWE-193CWE-193 Off-by-one Error
Type: CWE
CWE ID: CWE-193
Description: CWE-193 Off-by-one Error
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Information is not available yet
â–¼National Vulnerability Database (NVD)
nvd.nist.gov
Source:support@hackerone.com
Published At:14 Aug, 2024 | 03:15
Updated At:15 Aug, 2024 | 17:31

An off-by-one error in WLInfoRailService in Ivanti Avalanche 6.3.1 allows a remote unauthenticated attacker to crash the service, resulting in a DoS.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.17.5HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Secondary3.07.5HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Type: Primary
Version: 3.1
Base score: 7.5
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Type: Secondary
Version: 3.0
Base score: 7.5
Base severity: HIGH
Vector:
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CPE Matches
Ivanti Software
ivanti
>>avalanche>>6.3.1
cpe:2.3:a:ivanti:avalanche:6.3.1:*:*:*:premise:*:*:*
Ivanti Software
ivanti
>>avalanche>>6.3.1.1507
cpe:2.3:a:ivanti:avalanche:6.3.1.1507:*:*:*:premise:*:*:*
Ivanti Software
ivanti
>>avalanche>>6.3.2
cpe:2.3:a:ivanti:avalanche:6.3.2:*:*:*:*:*:*:*
Ivanti Software
ivanti
>>avalanche>>6.3.2
cpe:2.3:a:ivanti:avalanche:6.3.2:*:*:*:*:windows:*:*
Ivanti Software
ivanti
>>avalanche>>6.3.2
cpe:2.3:a:ivanti:avalanche:6.3.2:*:*:*:premise:*:*:*
Ivanti Software
ivanti
>>avalanche>>6.3.2.3490
cpe:2.3:a:ivanti:avalanche:6.3.2.3490:*:*:*:*:*:*:*
Ivanti Software
ivanti
>>avalanche>>6.3.2.3490
cpe:2.3:a:ivanti:avalanche:6.3.2.3490:*:*:*:premise:*:*:*
Ivanti Software
ivanti
>>avalanche>>6.3.3
cpe:2.3:a:ivanti:avalanche:6.3.3:*:*:*:*:*:*:*
Ivanti Software
ivanti
>>avalanche>>6.3.3
cpe:2.3:a:ivanti:avalanche:6.3.3:*:*:*:premise:*:*:*
Ivanti Software
ivanti
>>avalanche>>6.3.3.101
cpe:2.3:a:ivanti:avalanche:6.3.3.101:*:*:*:*:*:*:*
Ivanti Software
ivanti
>>avalanche>>6.3.3.101
cpe:2.3:a:ivanti:avalanche:6.3.3.101:*:*:*:premise:*:*:*
Ivanti Software
ivanti
>>avalanche>>6.3.4
cpe:2.3:a:ivanti:avalanche:6.3.4:*:*:*:*:*:*:*
Ivanti Software
ivanti
>>avalanche>>6.3.4
cpe:2.3:a:ivanti:avalanche:6.3.4:*:*:*:premise:*:*:*
Ivanti Software
ivanti
>>avalanche>>6.3.4.153
cpe:2.3:a:ivanti:avalanche:6.3.4.153:*:*:*:premise:*:*:*
Ivanti Software
ivanti
>>avalanche>>6.4.0
cpe:2.3:a:ivanti:avalanche:6.4.0:*:*:*:*:*:*:*
Ivanti Software
ivanti
>>avalanche>>6.4.1
cpe:2.3:a:ivanti:avalanche:6.4.1:*:*:*:*:*:*:*
Ivanti Software
ivanti
>>avalanche>>6.4.1
cpe:2.3:a:ivanti:avalanche:6.4.1:*:*:*:premise:*:*:*
Ivanti Software
ivanti
>>avalanche>>6.4.1.207
cpe:2.3:a:ivanti:avalanche:6.4.1.207:*:*:*:premise:*:*:*
Ivanti Software
ivanti
>>avalanche>>6.4.1.236
cpe:2.3:a:ivanti:avalanche:6.4.1.236:*:*:*:premise:*:*:*
Ivanti Software
ivanti
>>avalanche>>6.4.2
cpe:2.3:a:ivanti:avalanche:6.4.2:*:*:*:premise:*:*:*
Weaknesses
CWE IDTypeSource
CWE-193Primarynvd@nist.gov
CWE-193Secondary134c704f-9b21-4f2e-91b3-4a467353bcc0
CWE ID: CWE-193
Type: Primary
Source: nvd@nist.gov
CWE ID: CWE-193
Type: Secondary
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Avalanche-6-4-4-CVE-2024-38652-CVE-2024-38653-CVE-2024-36136-CVE-2024-37399-CVE-2024-37373support@hackerone.com
Vendor Advisory
Hyperlink: https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Avalanche-6-4-4-CVE-2024-38652-CVE-2024-38653-CVE-2024-36136-CVE-2024-37399-CVE-2024-37373
Source: support@hackerone.com
Resource:
Vendor Advisory

Change History

0
Information is not available yet

Similar CVEs

53Records found
CVE-2022-47517
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-0.98% / 76.31%
||
7 Day CHG~0.00%
Published-18 Dec, 2022 | 00:00
Updated-17 Apr, 2025 | 19:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

An issue was discovered in the libsofia-sip fork in drachtio-server before 0.8.19. It allows remote attackers to cause a denial of service (daemon crash) via a crafted UDP message that causes a url_canonize2 heap-based buffer over-read because of an off-by-one error.

Action-Not Available
Vendor-drachtion/a
Product-drachtio-servern/a
CWE ID-CWE-193
Off-by-one Error
CVE-2018-9860
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-0.50% / 65.36%
||
7 Day CHG~0.00%
Published-12 Apr, 2018 | 05:00
Updated-05 Aug, 2024 | 07:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

An issue was discovered in Botan 1.11.32 through 2.x before 2.6.0. An off-by-one error when processing malformed TLS-CBC ciphertext could cause the receiving side to include in the HMAC computation exactly 64K bytes of data following the record buffer, aka an over-read. The MAC comparison will subsequently fail and the connection will be closed. This could be used for denial of service. No information leak occurs.

Action-Not Available
Vendor-botan_projectn/a
Product-botann/a
CWE ID-CWE-193
Off-by-one Error
CVE-2006-4574
Matching Score-4
Assigner-Red Hat, Inc.
ShareView Details
Matching Score-4
Assigner-Red Hat, Inc.
CVSS Score-7.5||HIGH
EPSS-6.82% / 91.14%
||
7 Day CHG~0.00%
Published-28 Oct, 2006 | 00:00
Updated-17 Jan, 2025 | 14:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Off-by-one error in the MIME Multipart dissector in Wireshark (formerly Ethereal) 0.10.1 through 0.99.3 allows remote attackers to cause a denial of service (crash) via certain vectors that trigger an assertion error related to unexpected length values.

Action-Not Available
Vendor-n/aWireshark Foundation
Product-wiresharkn/a
CWE ID-CWE-193
Off-by-one Error
CWE ID-CWE-617
Reachable Assertion
  • Previous
  • 1
  • 2
  • Next
Details not found