CVE-2024-29824: Ivanti Endpoint Manager (EPM) SQL Injection Vulnerability.

Ivanti Endpoint Manager (EPM) SQL Injection Vulnerability. Ivanti Endpoint Manager (EPM) contains a SQL injection vulnerability in Core server that allows an unauthenticated attacker within the same network to execute arbitrary code.

• CISA KEV-listed (remediation due 2024-10-23)
• EPSS 94.0% (99.9% percentile)

Browse the CVE database

Read the full analysis on IntelFusions