CVE-2024-34785 | Ivanti EPM 2024/up to 2022 SU5 sql injection

Posted by Angelo Barbosa | Sep 11, 2024 | CVE

A vulnerability, which was classified as critical, was found in Ivanti EPM up to 2022 SU5/2024. Affected is an unknown function. The manipulation leads to sql injection.

This vulnerability is traded as CVE-2024-34785. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-34785 | Ivanti EPM 2024/up to 2022 SU5 sql injection

Related Posts

CVE-2023-47460 | Knovos Discovery 22.67.0 getGridColumnStructure sql injection

CVE-2024-44945 | Linux Kernel up to 6.10.6 nfnetlink Privilege Escalation (3e03b536d945/d1a7b382a9d3)

CVE-2024-35760 | WP Job Portal Plugin up to 2.1.3 on WordPress cross site scripting

CVE-2024-38476 | Apache HTTP Server up to 2.4.59 Backend Application information disclosure