CVE-2024-22026
CVE-2024-22026 is a local privilege-escalation flaw in Ivanti EPMM (MobileIron Core) prior to 12.1.0.0. The root cause is inadequate validation in the software-update CLI, which can fetch an unverified RPM from a remote URL and execute it with root privileges, enabling arbitrary code execution. A...