Ivanti Patches 27 Critical Flaws in Avalanche MDM: Urgent Update Required
April 17, 2024Ivanti, a software company, has released patches for 27 vulnerabilities in its Avalanche MDM product.
The patches address two critical flaws that could allow command execution and multiple high-severity vulnerabilities that could lead to denial-of-service attacks.
All supported versions of Avalanche are impacted, prompting an advisory for customers to update to version 6.4.3 immediately.
Avalanche is used by organizations to manage and secure various mobile devices, including smartphones, tablets, and ruggedized handhelds.
The update also remedies 25 other bugs which range in severity and include potential exploits for denial-of-service, arbitrary command execution, and sensitive information disclosure.
The disclosure of these vulnerabilities is crucial for IT professionals and businesses relying on Ivanti's MDM solution to maintain the integrity and security of their mobile device infrastructure.
Summary based on 5 sources
Get a daily email with more Tech stories
Sources
TechRadar pro • Apr 17, 2024
Another Ivanti service has been forced to patch multiple security flawsSecurityWeek • Apr 17, 2024
Ivanti Patches 27 Vulnerabilities in Avalanche MDM ProductOODA Loop • Apr 17, 2024
Ivanti Patches 27 Vulnerabilities in Avalanche MDM ProductSecurity Affairs • Apr 17, 2024
Ivanti fixed two critical flaws in its Avalanche MDM