Two stack-based buffer overflow bugs (collectively designated as CVE-2023-32560) have been discovered in Ivanti Avalanche, an enterprise mobility management solution. A buffer overflow arises when the data in a buffer surpasses its storage capacity. This surplus data spills into nearby memory locations, causing corruption or overwriting of such data. About CVE-2023-32560 CVE-2023-32560 could allow a threat actor to send a specially designed message to the Wavelink Avalanche Manager, potentially causing service disruption or the execution … More

The post Ivanti Avalanche vulnerable to attack by unauthenticated, remote attackers (CVE-2023-32560) appeared first on Help Net Security.