High severity7.2NVD Advisory· Published Sep 12, 2024· Updated Jun 17, 2026
CVE-2024-32848
CVE-2024-32848
Description
An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution.
Affected products
2Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.