CVE-2026-8111 | Ivanti Endpoint Manager up to 2024 SU5 Web Console sql injection

Inserito da Angelo Barbosa | Mag 12, 2026 | CVE

A vulnerability, which was classified as critical, was found in Ivanti Endpoint Manager up to 2024 SU5. The affected element is an unknown function of the component Web Console. Such manipulation leads to sql injection.

This vulnerability is referenced as CVE-2026-8111. It is possible to launch the attack remotely. No exploit is available.

You should upgrade the affected component.

CVE-2026-8111 | Ivanti Endpoint Manager up to 2024 SU5 Web Console sql injection

Post correlati

CVE-2024-5680 | Schneider Electric EcoStruxure Foxboro DCS Core Control Services up to 9.8 Foxboro.sys array index (SEVD-2024-191-02)

CVE-2026-33421 | parse-community parse-server up to 8.6.52/9.6.0-alpha.41 LiveQuery WebSocket Interface authorization (GHSA-fph2-r4qg-9576)

CVE-2024-53719 | onigetoc Zajax Plugin up to 0.4 on WordPress cross-site request forgery

CVE-2024-49768 | Pylons Waitress up to 3.0.0 on Python HTTP Pipelining recv_bytes toctou