The Cybersecurity and Infrastructure Security Agency recently added a new vulnerability to its Known Exploited Vulnerabilities Catalog, specifically targeting CVE-2024-29824 found in the Ivanti Endpoint Manager. This vulnerability, classified as an SQL Injection vulnerability in the core server of Ivanti EPM 2022 SU5 and earlier versions, poses a significant risk as it allows an unauthenticated attacker within the network to execute arbitrary code.
With a critical CVSS score of 9.6, this vulnerability has caught the attention of security experts and organizations relying on Ivanti EPM for their operations. On October 1, Ivanti issued an update to its security advisory confirming that the vulnerability had indeed been exploited in the wild. The advisory noted that a limited number of customers had already fallen victim to this exploit, raising concerns about the potential impact on affected organizations.
In response to the threat, Ivanti released security updates back in May to address this critical flaw, along with other vulnerabilities identified in EPM’s core server. Eric Schwake, director of cybersecurity strategy at Salt Security, emphasized the severity of this vulnerability in a statement, warning of the serious consequences that could result from its exploitation. He stressed the importance of organizations promptly applying the necessary patches and conducting thorough security assessments to identify and mitigate any potential risks to their systems.
Customers utilizing Ivanti EPM can access information on patching the vulnerability on Ivanti’s website, providing guidance on how to secure their systems against this and other potential threats. As the digital landscape continues to evolve and threats become increasingly sophisticated, the proactive management of vulnerabilities and timely application of patches are more critical than ever in safeguarding sensitive data and ensuring the uninterrupted operation of business systems.
Overall, the discovery of the CVE-2024-29824 vulnerability in Ivanti Endpoint Manager underscores the ongoing challenges faced by organizations in protecting their digital assets from malicious actors. By staying vigilant, prioritizing security measures, and responding promptly to emerging threats, businesses can enhance their resilience against cyber threats and minimize the potential impact of security breaches.