CVE-2024-29828

Name of the Vulnerable Software and Affected Versions: Ivanti Endpoint Manager versions prior to 2022 SU5

Description: The issue is related to a SQL Injection vulnerability in the GetRulesetsSQL method of Ivanti Endpoint Manager, which fails to properly protect the SQL query structure. This allows a remote attacker to execute arbitrary code using a specially crafted query. The vulnerability can be exploited by an authenticated attacker within the same network.

Recommendations: For versions prior to 2022 SU5, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the GetRulesetsSQL method to minimize the risk of exploitation.