CVE-2024-29822
published 2024-05-31CVE-2024-29822: An unspecified SQL Injection vulnerability in Core server of Ivanti EPM 2022 SU5 and prior allows an unauthenticated attacker within the same network to…
PriorityP271high8.8CVSS 3.1
AVAACLPRNUINSUCHIHAH
EPSS
64.39%
99.1th percentile
An unspecified SQL Injection vulnerability in Core server of Ivanti EPM 2022 SU5 and prior allows an unauthenticated attacker within the same network to execute arbitrary code.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ivanti | endpoint_manager | < 2022 | 2022 |
| ivanti | endpoint_manager | — | — |
| ivanti | epm | 2022 SU5 – 2022 SU5 | — |
| msrc | microsoft_365_apps_for_enterprise_for_32-bit_systems | — | — |
| msrc | microsoft_365_apps_for_enterprise_for_64-bit_systems | — | — |
| msrc | microsoft_office_2019_for_32-bit_editions | — | — |
| msrc | microsoft_office_2019_for_64-bit_editions | — | — |
| msrc | microsoft_office_ltsc_2021_for_32-bit_editions | — | — |
| msrc | microsoft_office_ltsc_2021_for_64-bit_editions | — | — |
| msrc | microsoft_office_ltsc_2024_for_32-bit_editions | — | — |
| msrc | microsoft_office_ltsc_2024_for_64-bit_editions | — | — |
| msrc | microsoft_office_ltsc_for_mac_2021 | — | — |
| msrc | microsoft_office_ltsc_for_mac_2024 | — | — |
| msrc | microsoft_onenote_2016 | — | — |
| msrc | microsoft_onenote_for_mac | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Target product is Ivanti EPM (Endpoint Manager) Core server, versions 2022 SU5 and prior — monitor for anomalous SQL-related traffic or errors originating from the Core server component ↗
- →Attack vector is network-adjacent (same network segment) and requires no authentication — prioritize detection of unauthenticated requests to the Ivanti EPM Core server from internal/lateral network sources ↗
- →Vulnerability class is SQL Injection (CWE-89) leading to RCE — monitor Ivanti EPM Core server logs and database logs for unexpected SQL syntax, stacked queries, or xp_cmdshell-style execution patterns ↗
- ·The vulnerability is described as 'unspecified', meaning the exact vulnerable endpoint, parameter, or payload has not been publicly disclosed in these sources — specific IOCs such as URLs, hashes, or signatures cannot be derived from available documentation ↗
- ·CVSS score of 8.8 (HIGH) reflects the network-adjacent, unauthenticated RCE impact — patching to a version beyond 2022 SU5 is the primary remediation path ↗
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv3.09.6CRITICALCVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
vendor_msrc7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-mpcf-6x99-gw9r: An unspecified SQL Injection vulnerability in Core server of Ivanti EPM 2022 SU5 and prior allows an unauthenticated attacker within the same network
ghsa_unreviewed·2024-05-31
CVE-2024-29822 [CRITICAL] CWE-89 GHSA-mpcf-6x99-gw9r: An unspecified SQL Injection vulnerability in Core server of Ivanti EPM 2022 SU5 and prior allows an unauthenticated attacker within the same network
An unspecified SQL Injection vulnerability in Core server of Ivanti EPM 2022 SU5 and prior allows an unauthenticated attacker within the same network to execute arbitrary code.
Microsoft
Microsoft OneNote Security Feature Bypass Vulnerability
vendor_msrc·2025-04-08·CVSS 7.8
CVE-2025-29822 [HIGH] CWE-184 Microsoft OneNote Security Feature Bypass Vulnerability
Microsoft OneNote Security Feature Bypass Vulnerability
Description: Incomplete list of disallowed inputs in Microsoft Office OneNote allows an unauthorized attacker to bypass a security feature locally.
FAQ: Is the Preview Pane an attack vector for this vulnerability?
No, the Preview Pane is not an attack vector.
FAQ: According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?
Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft OneNote and then click on a specially crafted URL to be compromised by the attacker.
FAQ: Are the updates for Microsoft Office LTSC for Mac 2021 and 2024 currently available?
Yes. As of April 14, 2025, the security update for Microsoft Offic
Ivanti
Ivanti Security Advisory: CVE-2024-29822
vendor_ivanti·2024-05-31·CVSS 8.8
CVE-2024-29822 [HIGH] CWE-89 Ivanti Security Advisory: CVE-2024-29822
Ivanti Security Advisory: CVE-2024-29822
An unspecified SQL Injection vulnerability in Core server of Ivanti EPM 2022 SU5 and prior allows an unauthenticated attacker within the same network to execute arbitrary code.
CVE IDs: CVE-2024-29822
CVSS Base Score: 8.8
Severity: HIGH
CWEs: CWE-89
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-05-31
Published