Known vulnerabilities in Ivanti Avalanche

Vendor: Ivanti
Website: https://www.ivanti.com/
Total Security Bulletins: 13

Security bulletins (13)

Secuity bulletin Severity Status Published
SB2025081242: Multiple vulnerabilities in Ivanti Avalanche Low
Patched
12.08.2025
SB2025011593: Multiple vulnerabilities in Ivanti Avalanche High
Patched
15.01.2025
SB20241115103: Multiple vulnerabilities in Ivanti Avalanche Medium
Patched
15.11.2024
SB2024101137: Multiple vulnerabilities in Ivanti Avalanche Medium
Patched
11.10.2024
SB2024081432: Multiple vulnerabilities in Ivanti Avalanche High
Patched Public exploit
14.08.2024
SB2024052214: Arbitrary file upload in Ivanti Avalanche Medium
Patched
22.05.2024
SB20240417128: Multiple vulnerabilities in Ivanti Avalanche High
Patched
17.04.2024
SB2023121904: Multiple vulnerabilities in Ivanti Avalanche High
Patched
19.12.2023
SB2023121810: Multiple vulnerabilities in Ivanti Avalanche Low
Patched
18.12.2023
SB2023031013: Improper Authentication in Ivanti Avalanche High
Patched Public exploit
10.03.2023
SB2021122106: Remote code execution in Avalanche (Apache Log4j component) Critical
Patched Exploited
21.12.2021
SB2021112207: Multiple vulnerabilities in Ivanti Avalanche High
Patched
22.11.2021
SB2020042918: SQL injection in Ivanti Avalanche High
Not patched
29.04.2020