CVE-2024-8191

Name of the Vulnerable Software and Affected Versions: Ivanti EPM versions before 2022 SU6 Ivanti EPM versions before the 2024 September update

Description: The issue is related to SQL injection in the management console of Ivanti EPM, allowing a remote unauthenticated attacker to achieve remote code execution. This is due to the lack of measures to neutralize special elements used in the operating system command. The exploitation of this issue can enable a remote attacker to execute arbitrary code.

Recommendations: For Ivanti EPM versions before 2022 SU6, update to version 2022 SU6 or later to resolve the issue. For Ivanti EPM versions before the 2024 September update, apply the 2024 September update to fix the vulnerability. As a temporary workaround, consider restricting access to the management console to minimize the risk of exploitation.