An unspecified SQL Injection vulnerability in Core server of Ivanti EPM 2022 SU5 and prior allows an unauthenticated attacker within the same network to execute arbitrary code.
Metrics
Affected Vendors & Products
References
History
Thu, 03 Oct 2024 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Ivanti
Ivanti endpoint Manager |
|
CPEs | cpe:2.3:a:ivanti:endpoint_manager:*:*:*:*:*:*:*:* cpe:2.3:a:ivanti:endpoint_manager:2022:-:*:*:*:*:*:* cpe:2.3:a:ivanti:endpoint_manager:2022:su1:*:*:*:*:*:* cpe:2.3:a:ivanti:endpoint_manager:2022:su2:*:*:*:*:*:* cpe:2.3:a:ivanti:endpoint_manager:2022:su3:*:*:*:*:*:* cpe:2.3:a:ivanti:endpoint_manager:2022:su4:*:*:*:*:*:* cpe:2.3:a:ivanti:endpoint_manager:2022:su5:*:*:*:*:*:* |
|
Vendors & Products |
Ivanti
Ivanti endpoint Manager |
|
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: hackerone
Published: 2024-05-31T17:38:31.330Z
Updated: 2024-08-02T01:17:57.543Z
Reserved: 2024-03-20T01:04:06.690Z
Link: CVE-2024-29825
Vulnrichment
Updated: 2024-08-02T01:17:57.543Z
NVD
Status : Modified
Published: 2024-05-31T18:15:11.443
Modified: 2024-11-21T09:08:24.907
Link: CVE-2024-29825
Redhat
No data.