CVE-2023-46260

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 19, 2023
Updated: Dec 21, 2023
CWE ID 787

Summary

CVE-2023-46260 is a vulnerability affecting the Mobile Device Server that can be exploited through the processing of maliciously crafted data packets. This issue results in memory corruption, potentially leading to a Denial of Service (DoS) attack or even code execution by an attacker. The vulnerability poses a significant security risk if not addressed promptly. It is essential for organizations using the Mobile Device Server to apply the necessary patches or updates to safeguard their systems from potential exploitation.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Ivanti Avalanche

Affected Vendors

  • Ivanti Software Inc.