CVE-2024-13179
Published: 14 January 2025
Summary
CVE-2024-13179 is a high-severity Path Traversal (CWE-22) vulnerability in Ivanti Avalanche. Its CVSS base score is 7.3 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 20.6% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).
Deeper analysis
CVE-2024-13179 is a path traversal vulnerability, also categorized under authentication bypass, that affects Ivanti Avalanche prior to version 6.4.7. The flaw permits remote attackers to manipulate file paths and circumvent authentication controls in the affected device management software.
A remote unauthenticated attacker can exploit the issue over the network with low attack complexity and no user interaction required. Successful exploitation grants partial read, write, and disruption capabilities against confidentiality, integrity, and availability by bypassing normal access restrictions.
The referenced Ivanti security advisory addresses this CVE alongside others and directs customers to upgrade to Avalanche 6.4.7 to resolve the path traversal and related authentication issues.
EPSS for the vulnerability rose from a low baseline to a peak of 0.1562 on 2025-12-11 before receding to the current value of 0.0122, indicating a period of increased exploitation interest after public disclosure.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-51401
Vulnerability details
Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker to bypass authentication.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Path traversal auth bypass in public-facing Ivanti Avalanche server directly enables remote exploitation of the application without credentials.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly mitigates CVE-2024-13179 by identifying, reporting, and applying vendor patches to remediate the path traversal flaw allowing authentication bypass.
Prevents path traversal exploitation in Ivanti Avalanche by validating and restricting inputs at file path processing points to block unauthorized access.
Enforces approved access authorizations to limit the scope and impact of authentication bypass achieved via path traversal.