PT-2024-4016 · Ivanti · Ivanti Epm+1

Published

2024-04-03

Updated

2024-10-03

CVE-2024-29825

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Ivanti EPM versions 2022 SU5 and prior

Description: The issue is related to an unspecified SQL Injection vulnerability in the Core server of Ivanti EPM, allowing an unauthenticated attacker within the same network to execute arbitrary code. This vulnerability is also associated with the RecordBrokenApp method in Ivanti Endpoint Manager, which fails to protect the SQL query structure, enabling a remote attacker to execute arbitrary code using a specially crafted query.

Recommendations: For Ivanti EPM versions 2022 SU5 and prior, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-89

Related Identifiers

BDU:2024-04449

CVE-2024-29825

ZDI-24-508

Affected Products

Ivanti Epm

Ivanti Endpoint Manager

PT-2024-4016 · Ivanti · Ivanti Epm+1

CVE-2024-29825

Weakness Enumeration

Related Identifiers

Affected Products

References · 10