CVE-2024-32847 | Ivanti EPM 2024/up to 2022 SU5 sql injection

Inserito da Angelo Barbosa | Nov 13, 2024 | CVE

A vulnerability has been found in Ivanti EPM up to 2022 SU5/2024 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection.

This vulnerability is known as CVE-2024-32847. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-32847 | Ivanti EPM 2024/up to 2022 SU5 sql injection

Post correlati

CVE-2024-7709 | OcoMon 4.0 URL require_access_recovery.php cross site scripting

CVE-2024-28294 | Limbas up to 5.2.14 ftid sql injection

CVE-2024-37310 | EVerest Core prior 2024.3.1/2024.6.0 v2g_server.cpp v2g_incoming_v2gtp heap-based overflow (GHSA-8g9q-7qr9-vc96)

CVE-2024-24844 | PowerPack Pro for Elementor Plugin up to 2.10.6 on WordPress Setting authorization