CVE-2024-29826 | Ivanti Endpoint Manager GetDBPatches sql injection

Posted by Angelo Barbosa | May 25, 2024 | CVE

A vulnerability classified as critical has been found in Ivanti Endpoint Manager. Affected is the function GetDBPatches. The manipulation leads to sql injection.

This vulnerability is traded as CVE-2024-29826. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-29826 | Ivanti Endpoint Manager GetDBPatches sql injection

Related Posts

CVE-2023-37541 | HCL Connections 7.0/8.0 access control (KB0114156)

CVE-2024-48904 | Trend Micro Cloud Edge REST API command injection (ZDI-24-1418)

CVE-2024-40600 | Metrolook Skin up to 1.42.1 on MediaWiki Sidebar Menu cross site scripting

CVE-2024-5220 | ND Shortcodes Plugin up to 7.5 on WordPress cross site scripting