A vulnerability, which was classified as critical, was found in Ivanti Endpoint Manager up to 2022 SU4. Affected is an unknown function. The manipulation leads to sql injection.
This vulnerability is traded as CVE-2023-39336. Access to the local network is required for this attack to succeed. There is no exploit available.
It is recommended to apply a patch to fix this issue.