2024-05-23 09:21:00 UTC

Ivanti has released patches for critical remote code execution vulnerabilities in Endpoint Manager. The fixes address multiple security flaws that could be exploited by attackers to achieve remote code execution. Six out of the 10 vulnerabilities, with CVSS scores of 9.6, are related to SQL injection flaws that can be exploited by unauthenticated attackers within the same network.