19Nis
CVE-2024-24996 | Ivanti Avalanche up to 6.4.2 WLInfoRailService heap-based overflow
A vulnerability classified as very critical was found in Ivanti Avalanche up to 6.4.2. This vulnerability affects unknown code of the component WLInfoRailService. The manipulation leads to heap-based buffer overflow. This vulnerability was named CVE-2024-24996. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.