CVE-2024-8191
CVE-2024-8191
SQL injection in the management console of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote unauthenticated attacker to achieve remote code execution.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
Ivanti · Endpoint ManagerWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →