Ivanti EPM – TheCyberThrone

Ivanti fixes Critical Security Vulnerabilities in EPM

Ivanti has recently addressed multiple critical and high-severity vulnerabilities in its Endpoint Manager (EPM) software. These vulnerabilities could allow unauthorized access, remote code execution, privilege escalation, and sensitive information leaks.…

PravinKarthik January 16, 2025

Ivanti Addressed Multiple Vulnerabilities as part of November 2024 advisories

Ivanti has released trove of security updates as part of November 2024 security advisory Ivanti Endpoint Manager The most critical vulnerability, CVE-2024-50330 with a CVSS score of 9.8, is a SQL injection…

PravinKarthik November 13, 2024

CISA adds CVE-2024-29824 to its KEV Catalog

The US CISA has added Ivanti EPM flaw to its Known Exploited Vulnerabilities Catalog based on evidence of active exploitation. CVE-2024-29824 Ivanti Endpoint Manager (EPM) SQL Injection Vulnerability: Ivanti Endpoint Manager…

PravinKarthik October 3, 2024

Ivanti Patches SQLi Vulnerability in its EPM Software -CVE-2024-37381

Ivanti has addressed a SQL Injection vulnerability in its Endpoint Management (EPM) software. This vulnerability, tracked as CVE-2024-37381 with a CVSS score of 8.4, could have enabled authenticated attackers within…

PravinKarthik July 18, 2024

CISA adds CVE-2023-35082 to its KEV catalog

A critical vulnerability affecting Ivanti Endpoint Manager Mobile (EPMM), tracked as CVE-2023-35082, has been added to CISA's Known Exploited Vulnerabilities (KEV) Catalog. The vulnerability has a CVSS score of 9.8…

PravinKarthik January 20, 2024

Ivanti Patches a Critical Vulnerability CVE-2023-39336

Ivanti has patched a critical vulnerability, tracked as CVE-2023-39336 with a CVSS score 9.6, impacting its endpoint manager (EPM) solution. The exploitation of this vulnerability could lead to remote code…

PravinKarthik January 6, 2024