exploitDog

GHSA-jxvj-5w26-hpx9

Опубликовано: 12 нояб. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution.

SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution.

Ссылки

EPSS

Процентиль: 95%

0.15948

Средний

7.2 High

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2024-50328

CVSS3: 7.2

nvd

около 1 года назад

SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code execution.

EPSS

Процентиль: 95%

0.15948

Средний

7.2 High

CVSS3

CVE ID

Дефекты

CWE-89