First published: Thu Sep 12 2024(Updated: )
An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution.
Credit: support@hackerone.com
Affected Software | Affected Version | How to fix |
---|---|---|
Ivanti Endpoint Manager (EPM) | <2022 | |
Ivanti Endpoint Manager (EPM) | =2022 | |
Ivanti Endpoint Manager (EPM) | =2022-su1 | |
Ivanti Endpoint Manager (EPM) | =2022-su2 | |
Ivanti Endpoint Manager (EPM) | =2022-su3 | |
Ivanti Endpoint Manager (EPM) | =2022-su4 | |
Ivanti Endpoint Manager (EPM) | =2022-su5 | |
Ivanti Endpoint Manager (EPM) | =2024 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-34785 is considered critical due to its potential for remote code execution by authenticated attackers.
To fix CVE-2024-34785, update Ivanti Endpoint Manager to the latest version provided in the security advisory.
CVE-2024-34785 affects Ivanti Endpoint Manager versions prior to 2022 SU6 and the 2024 September update.
No, CVE-2024-34785 requires the attacker to have admin privileges to exploit the SQL injection vulnerability.
Yes, CVE-2024-34785 allows a remote authenticated attacker to achieve remote code execution on the affected systems.