CVE-2024-32840 – Ivanti EPM SQL Injection Remote Code Execution

CVE ID : CVE-2024-32840

Published : Sept. 12, 2024, 2:15 a.m. | 1 hour, 6 minutes ago

Description : An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution.

Severity: 9.1 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…CVE ID : CVE-2024-32840

Published : Sept. 12, 2024, 2:15 a.m. | 1 hour, 6 minutes ago

Description : An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution.

Severity: 9.1 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…