4 matches found
CVE-2024-34783
An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution...
CVE-2024-34783
An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution...
CVE-2024-34783
CVE-2024-34783 is an unspecified SQL injection in Ivanti Endpoint Manager (EPM) before 2022 SU6, or the 2024 September update, that allows a remote authenticated attacker with admin privileges to achieve remote code execution. Public sources in the connected set (Red Hat, NVD/NCSC, Nessus advisor...
Ivanti Releases Urgent Security Updates for Endpoint Manager Vulnerabilities
Ivanti has released software updates to address multiple security flaws impacting Endpoint Manager EPM, including 10 critical vulnerabilities that could result in remote code execution. A brief description of the issues is as follows - CVE-2024-29847 CVSS score: 10.0 - A deserialization of...