CVE-2024-29846 | Ivanti Endpoint Manager GetVulnerabilitiesDataTable sql injection

Inserito da Angelo Barbosa | Mag 25, 2024 | CVE

A vulnerability was found in Ivanti Endpoint Manager and classified as critical. Affected by this issue is the function GetVulnerabilitiesDataTable. The manipulation leads to sql injection.

This vulnerability is handled as CVE-2024-29846. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-29846 | Ivanti Endpoint Manager GetVulnerabilitiesDataTable sql injection

Post correlati

CVE-2021-46917 | Linux Kernel up to 5.10.31/5.11/5.11.15 idxd Privilege Escalation (e5eb9757fe4c/f7dc8f561916/ea9aadc06a9f)

CVE-2023-50868 | DNS Protocol Closest Encloser Proof resource consumption

CVE-2024-22851 | LiveConfig up to 2.5.1 Request /static/ path traversal

CVE-2021-47176 | Linux Kernel up to 5.4.236/5.10.174/5.12.8 s390 dasd_generic_verify_path denial of service