VYPR
High severity8.0NVD Advisory· Published May 31, 2024· Updated Jun 17, 2026

CVE-2024-29828

CVE-2024-29828

Description

An unspecified SQL Injection vulnerability in Core server of Ivanti EPM 2022 SU5 and prior allows an authenticated attacker within the same network to execute arbitrary code.

Affected products

2
  • Ivanti/EPMllm-fuzzy2 versions
    <=2022 SU5+ 1 more
    • (no CPE)range: <=2022 SU5
    • (no CPE)range: 2022 SU5

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.