Multiple SQL injection vulnerabilities have been discovered in Ivanti Endpoint Manager, posing a threat of unauthorized actions including Denial of Service attacks and code execution. Eleven vulnerabilities of varying severity were identified, with some allowing unauthenticated attackers to execute arbitrary code. Users are advised to update to the latest versions to mitigate the risk of exploitation
```https://cybersecuritynews.com/ivanti-endpoint-sql-injection-flaw/