Ivanti (Endpoint Manager (EPM)) Data Breach
Ivanti (Endpoint Manager (EPM)) experienced a data breach that was reported on October 2, 2024. Ivanti Endpoint Manager (EPM) contains a SQL injection vulnerability in Core server that allows an unauthenticated attacker within the same network to execute arbitrary code.
Key Facts
- Organization
- Ivanti (Endpoint Manager (EPM))
- Date Reported
- October 2, 2024
- Incident Type
- web app exploit
- Industry
- Technology
- Severity Score
- 5/10
- Confidence Level
- high
- Tags
Source
View original source - External link to primary source documentation
Understanding web app exploit Incidents
Web application exploits target vulnerabilities in websites and APIs. Secure development practices, WAFs, and penetration testing protect against these attacks.