VYPR
High severity8.0NVD Advisory· Published Jul 29, 2024· Updated Jun 17, 2026

CVE-2024-37381

CVE-2024-37381

Description

An unspecified SQL Injection vulnerability in Core server of Ivanti EPM 2024 flat allows an authenticated attacker within the same network to execute arbitrary code.

Affected products

2
  • Ivanti/EPMllm-fuzzy2 versions
    2024+ 1 more
    • (no CPE)range: 2024
    • (no CPE)range: 2024

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.