Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
6DescriptionCVE.org
A security vulnerability within Ivanti Avalanche Manager before version 6.4.1 may allow an unauthenticated attacker to create a buffer overflow that could result in service disruption or arbitrary code execution.
AnalysisAI
CVE-2023-38036 is a critical unauthenticated buffer overflow vulnerability in Ivanti Avalanche Manager prior to version 6.4.1 that allows remote attackers to cause denial of service or achieve arbitrary code execution without authentication. With a CVSS score of 9.8 and network-based attack vector, this vulnerability has significant real-world exploitability risk and affects all organizations deploying vulnerable Avalanche Manager instances.
Technical ContextAI
The vulnerability exists in Ivanti Avalanche Manager, a mobile device management (MDM) and endpoint management solution. The root cause is classified as CWE-120 (Buffer Copy without Checking Size of Input, classic buffer overflow), indicating that the application fails to properly validate input size before copying data into a fixed-size buffer. This is a stack or heap-based buffer overflow vulnerability likely triggered through network input to a management service endpoint. The affected product line manages enterprise mobile and desktop devices, making the management interface itself a high-value attack target. Versions before 6.4.1 contain the vulnerable code path; the vulnerability is network-accessible (AV:N) with no authentication required (PR:N) and no user interaction needed (UI:N), indicating the flaw likely exists in an unauthenticated service endpoint or protocol handler.
An attacker can send a specially crafted message to the Wavelink Avalanche Manager, which could result in service disrup
An unrestricted upload of file with dangerous type vulnerability exists in Avalanche versions 6.3.x and below that could
An unauthenticated attacker could achieve the code execution through a RemoteControl server. Rated critical severity (CV
XXE in SmartDeviceServer in Ivanti Avalanche 6.3.1 allows a remote unauthenticated attacker to read arbitrary files on t
Path Traversal in Ivanti Avalanche before version 6.4.5 allows a remote unauthenticated attacker to bypass authenticatio
Path Traversal in Ivanti Avalanche before version 6.4.5 allows a remote unauthenticated attacker to bypass authenticatio
A Heap Overflow vulnerability in WLAvalancheService component of Ivanti Avalanche before 6.4.3 allows a remote unauthent
A Heap overflow vulnerability in WLInfoRailService component of Ivanti Avalanche before 6.4.3 allows an unauthenticated
A Heap Overflow vulnerability in WLInfoRailService component of Ivanti Avalanche before 6.4.3 allows a remote unauthenti
An unauthenticated could abuse a XXE vulnerability in the Smart Device Server to leak data or perform a Server-Side Requ
An unrestricted upload of file with dangerous type vulnerability exists in Avalanche versions 6.4.1 and below that could
An unrestricted upload of file with dangerous type vulnerability exists in Avalanche versions 6.4.1 and below that could
Same weakness CWE-120 – Classic Buffer Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2023-41863