Ivanti, a software company, has released patches for 27 vulnerabilities in its Avalanche MDM product.

The patches address two critical flaws that could allow command execution and multiple high-severity vulnerabilities that could lead to denial-of-service attacks.

All supported versions of Avalanche are impacted, prompting an advisory for customers to update to version 6.4.3 immediately.

Avalanche is used by organizations to manage and secure various mobile devices, including smartphones, tablets, and ruggedized handhelds.

The update also remedies 25 other bugs which range in severity and include potential exploits for denial-of-service, arbitrary command execution, and sensitive information disclosure.

The disclosure of these vulnerabilities is crucial for IT professionals and businesses relying on Ivanti's MDM solution to maintain the integrity and security of their mobile device infrastructure.