July 18, 2024 at 07:45AM Ivanti released patches for high-severity vulnerabilities in Endpoint Manager and Endpoint Manager for Mobile, including hotfix for an SQL injection flaw. Also, patches for four vulnerabilities impacting all versions of Endpoint Manager for Mobile were released. Additionally, patches for a medium-severity path traversal-affiliated vulnerability in Ivanti Docs@Work for Android were … Read more
May 22, 2024 at 07:42AM IT software company Ivanti released patches for several products, including critical vulnerabilities in Endpoint Manager (EPM). The fixes addressed SQL injection bugs and unrestricted file upload issues. Ivanti urged customers to update to the latest versions to apply the fixes. The company also reaffirmed its commitment to enhancing security practices. … Read more
January 31, 2024 at 10:49AM Ivanti has released the first round of patches for Connect Secure and Policy Secure gateways, addressing two zero-day vulnerabilities. Admins are advised to apply the patches and factory-reset devices as a precaution. This comes after delayed releases and growing exploitation. Customers should monitor and apply mitigations as patches continue to … Read more
January 29, 2024 at 03:06PM Ivanti is facing delays in delivering patches for critical vulnerabilities in its Connect Secure VPN appliances, which have already been exploited. The company missed its promised timeline and now aims to release patches next week. The delays come after Chinese hackers exploited zero-day vulnerabilities, raising concerns for US government agencies … Read more