Ivanti » Endpoint Manager (Seite 6)

7.1

CVE-2024-10256

EPSS 0.14%
Veröffentlicht 10.12.2024 19:15:19
Zuletzt bearbeitet 12.08.2025 19:04:39

Insufficient permissions in Ivanti Patch SDK before version 9.7.703 allows a local authenticated attacker to delete arbitrary files.

7.2

CVE-2024-34780

EPSS 5.97%
Veröffentlicht 13.11.2024 02:15:17
Zuletzt bearbeitet 23.04.2025 19:18:18

SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution.

7.2

CVE-2024-34781

EPSS 63.71%
Veröffentlicht 13.11.2024 02:15:17
Zuletzt bearbeitet 01.05.2025 18:01:17

SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution.

7.2

CVE-2024-34782

EPSS 5.97%
Veröffentlicht 13.11.2024 02:15:17
Zuletzt bearbeitet 01.05.2025 18:01:32

SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution.

7.2

CVE-2024-34784

EPSS 5.97%
Veröffentlicht 13.11.2024 02:15:17
Zuletzt bearbeitet 01.05.2025 18:01:40

SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution.

7.8

CVE-2024-34787

EPSS 9.44%
Veröffentlicht 13.11.2024 02:15:17
Zuletzt bearbeitet 01.05.2025 18:01:43

Path traversal in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a local unauthenticated attacker to achieve code execution. User interaction is required.

7.2

CVE-2024-37376

EPSS 10.88%
Veröffentlicht 13.11.2024 02:15:17
Zuletzt bearbeitet 01.05.2025 18:01:46

SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution.

7.2

CVE-2024-32839

EPSS 8.97%
Veröffentlicht 13.11.2024 02:15:16
Zuletzt bearbeitet 23.04.2025 21:29:41

SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution.

7.2

CVE-2024-32841

EPSS 8.97%
Veröffentlicht 13.11.2024 02:15:16
Zuletzt bearbeitet 23.04.2025 21:30:05

SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution.

7.2

CVE-2024-32844

EPSS 5.97%
Veröffentlicht 13.11.2024 02:15:16
Zuletzt bearbeitet 23.04.2025 21:25:01

SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution.

Team-orientierte Vulnerability Management Plattform

Features der Plattform

Ivanti ≫ Endpoint Manager

CVE-2024-10256

CVE-2024-34780

CVE-2024-34781

CVE-2024-34782

CVE-2024-34784

CVE-2024-34787

CVE-2024-37376

CVE-2024-32839

CVE-2024-32841

CVE-2024-32844