Over a Dozen Critical RCE Vulnerabilities in Ivanti Avalanche; Actively Exploited Chrome Zero-Day, CVE-2023-7024 | allinfosecnews.com

Dec. 21, 2023, 12:45 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Ivanti has issued security updates to address a total of 22 vulnerabilities identified in its Avalanche Mobile Device Management (MDM) product. Among these, 13 are of critical severity, demanding immediate attention.

Avalanche MDM is a system designed for centralized device management via an internet connection, facilitating supply chain mobility. With Ivanti Avalanche MDM, users can oversee device details, including battery power and location, manage device settings like Wi-Fi and GPS, and distribute or remove software.

These vulnerabilities impact older …

actively exploited address attention avalanche chrome chrome zero-day critical cve device device management exploited internet ivanti ivanti avalanche management mdm mobile mobile device mobile device management product rce security security updates severity system updates vulnerabilities zero-day

More from malware.news / Malware Analysis, News and Indicators - Latest topics

FBI warns of email spoofing by North Korean threat actor Kimsuky 3 hours ago | malware.news

actor article dmarc domains +16

You get a passkey, you get a passkey, everyone should get a passkey 7 hours ago | malware.news

accounts can consumer cracked +10

Attackers evade detection by leveraging Microsoft Graph API 7 hours ago | malware.news

api article attackers cloud +15

Weird Al, Docker, OT, Gitlab, Credit Monitoring, Dropbox, Cisco, AI, Aaran Leyland... - SWN #383 8 hours ago | malware.news

article cisco credit credit monitoring +8

Code faster with generative AI, but beware the risks when you do 8 hours ago | malware.news

article can code coding +13

Proposed Bill Focuses on Voluntary AI Security Incident Reporting 8 hours ago | malware.news

ai security bill companies cybersecurity +21

The impact of automating open source dependency management 9 hours ago | malware.news

article business consuming customer +12

Diffusione di malware Keylogger tramite falsa pagina di Agenzia delle Entrate – PuntoFisco 10 hours ago | malware.news

agenzia delle entrate article cert con +5

Stronger cybersecurity aimed by Menlo Security, Google Cloud collaboration 11 hours ago | malware.news

article cloud collaboration customers +13

Senior Security Engineer - Detection and Response

@ Fastly, Inc. | US (Remote)

View on infosec-jobs.com

Application Security Engineer

@ Solidigm | Zapopan, Mexico

View on infosec-jobs.com

Defensive Cyber Operations Engineer-Mid

@ ISYS Technologies | Aurora, CO, United States

View on infosec-jobs.com

Manager, Information Security GRC

@ OneTrust | Atlanta, Georgia

View on infosec-jobs.com

Senior Information Security Analyst | IAM

@ EBANX | Curitiba or São Paulo

View on infosec-jobs.com

Senior Information Security Engineer, Cloud Vulnerability Research

@ Google | New York City, USA; New York, USA

View on infosec-jobs.com