PoC Exploit Emerges for Critical RCE Bug in Ivanti Endpoint Manager post, juni 13, 2024juni 14, 2024 A new month, a new high-risk Ivanti bug for attackers to exploit — this time, an SQL injection issue in its centralized endpoint manager. Researchers have developed a proof-of-concept (PoC) exploit for a critical vulnerability in Ivanti Endpoint Manager that was recently disclosed — potentially setting the stage for mass exploitation of the devices. CVE-2024-29824, an SQL injection bug, was first discovered by an independent researcher and sold to Trend Micro’s Zero Day Initiative (ZDI). ZDI informed Ivanti of the issue on April 3. PoC Exploit Emerges for Critical RCE Bug in Ivanti Endpoint Manager (darkreading.com): PoC Exploit Emerges for Critical RCE Bug in Ivanti Endpoint Manager cybersecurity vulnerability 2024