发布于3月6日3月6日 Members Ivanti EPM: CVE-2024-32840: SQL Injection Severity 8 CVSS (AV:N/AC:L/Au:M/C:C/I:C/A:C) Published 09/10/2024 Created 09/20/2024 Added 09/20/2024 Modified 12/31/2024 Description An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution. Solution(s) ivanti-epm-cve-2024-32840-epm-2022 ivanti-epm-cve-2024-32840-epm-2024 References CVE-2024-32840 https://forums.ivanti.com/s/article/Security-Advisory-EPM-September-2024-for-EPM-2024-and-EPM-2022?language=en_US
参与讨论
你可立刻发布并稍后注册。 如果你有帐户,立刻登录发布帖子。
注意:你的帖子需要版主批准后才能看到。