CVE-2024-32847
- EPSS 3.08%
- Veröffentlicht 13.11.2024 02:15:16
- Zuletzt bearbeitet 24.04.2025 15:07:57
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution.
CVE-2024-50327
- EPSS 1.02%
- Veröffentlicht 12.11.2024 16:15:25
- Zuletzt bearbeitet 18.11.2024 18:16:26
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution.
CVE-2024-50328
- EPSS 1.73%
- Veröffentlicht 12.11.2024 16:15:25
- Zuletzt bearbeitet 18.11.2024 18:08:14
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution.
CVE-2024-50329
- EPSS 1.67%
- Veröffentlicht 12.11.2024 16:15:25
- Zuletzt bearbeitet 18.11.2024 18:07:25
Path traversal in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote unauthenticated attacker to achieve remote code execution. User interaction is required.
CVE-2024-50330
- EPSS 40.51%
- Veröffentlicht 12.11.2024 16:15:25
- Zuletzt bearbeitet 23.04.2025 21:29:16
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote unauthenticated attacker to achieve remote code execution.
CVE-2024-50322
- EPSS 6.03%
- Veröffentlicht 12.11.2024 16:15:24
- Zuletzt bearbeitet 18.11.2024 16:30:49
Path traversal in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a local unauthenticated attacker to achieve code execution. User interaction is required.
CVE-2024-50323
- EPSS 0.67%
- Veröffentlicht 12.11.2024 16:15:24
- Zuletzt bearbeitet 18.11.2024 16:32:43
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a local unauthenticated attacker to achieve code execution. User interaction is required.
CVE-2024-50324
- EPSS 18.18%
- Veröffentlicht 12.11.2024 16:15:24
- Zuletzt bearbeitet 18.11.2024 17:06:27
Path traversal in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution.
CVE-2024-50326
- EPSS 25.81%
- Veröffentlicht 12.11.2024 16:15:24
- Zuletzt bearbeitet 18.11.2024 18:15:52
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution.
CVE-2024-32848
- EPSS 43.36%
- Veröffentlicht 12.09.2024 02:15:03
- Zuletzt bearbeitet 12.09.2024 22:35:05
An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution.