Security News > 2024 > May > Ivanti Patches Critical Remote Code Execution Flaws in Endpoint Manager
![Ivanti Patches Critical Remote Code Execution Flaws in Endpoint Manager](/static/build/img/news/ivanti-patches-critical-remote-code-execution-flaws-in-endpoint-manager-medium.jpg)
2024-05-23 09:21
Ivanti on Tuesday rolled out fixes to address multiple critical security flaws in Endpoint Manager (EPM) that could be exploited to achieve remote code execution under certain circumstances. Six of the 10 vulnerabilities – from CVE-2024-29822 through CVE-2024-29827 (CVSS scores: 9.6) – relate to SQL injection flaws that allow an unauthenticated attacker within the same network to
News URL
https://thehackernews.com/2024/05/ivanti-patches-critical-remote-code.html
Related news
- Patch up – 4 critical bugs in ArubaOS lead to remote code execution (source)
- Critical Tinyproxy Flaw Opens Over 50,000 Hosts to Remote Code Execution (source)
- New PHP Vulnerability Exposes Windows Servers to Remote Code Execution (source)
- ASUS warns of critical remote authentication bypass on 7 routers (source)
- Mailcow Mail Server Flaws Expose Servers to Remote Code Execution (source)