Lucene search
+L

7 matches found

nessus
nessus
added 2024/09/18 12:0 a.m.97 views

Ivanti Endpoint Manager 2022 - September Security Update

The version of Ivanti Endpoint Manager 2024 running on the remote host lacking the September 2024 Hotfix. It is, therefore, affected by mutliple vulnerabilities: - An unspecified SQL injection in Ivanti EPM before the 2024 September update allows a remote authenticated attacker with admin...

10CVSS9.3AI score0.59257EPSS
Exploits3References17
nessus
nessus
added 2024/09/13 12:0 a.m.154 views

Ivanti Endpoint Manager - September 2024 Security Update

The version of Ivanti Endpoint Manager running on the remote host is lacking the September 2024 Hotfix or Security Update 6. It is, therefore, affected by mutliple vulnerabilities: - An unspecified SQL injection in Ivanti EPM before the 2024 September update allows a remote authenticated attacker...

10CVSS9.3AI score0.59257EPSS
Exploits3References17
nvd
nvd
added 2024/09/12 2:15 a.m.39 views

CVE-2024-32840

An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution...

9.1CVSS0.25389EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/09/12 1:9 a.m.17 views

CVE-2024-32840

An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution...

9.1CVSS8.5AI score0.25389EPSS
Exploits0References1
cve
cve
added 2024/09/12 1:9 a.m.71 views

CVE-2024-32840

CVE-2024-32840 affects Ivanti Endpoint Manager (EPM). The reported issue is an unspecified SQL injection in EPM before the 2024 September update (or the 2024 September update) that allows a remote authenticated attacker with admin privileges to achieve remote code execution. Public documents from...

9.1CVSS9.5AI score0.25389EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2024/09/12 1:9 a.m.28 views

CVE-2024-32840

An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution...

9.1CVSS0.25389EPSS
Exploits0References1
thn
thn
added 2024/09/11 6:30 a.m.43 views

Ivanti Releases Urgent Security Updates for Endpoint Manager Vulnerabilities

Ivanti has released software updates to address multiple security flaws impacting Endpoint Manager EPM, including 10 critical vulnerabilities that could result in remote code execution. A brief description of the issues is as follows - CVE-2024-29847 CVSS score: 10.0 - A deserialization of...

10CVSS9.1AI score0.88955EPSS
Exploits4
Rows per page
Query Builder