Researcher Uncovers Critical Flaws in Multiple Versions of Ivanti Endpoint Manager

Ivanti has released security updates for multiple versions of Ivanti Endpoint Manager, addressing four critical flaws that could lead to information disclosure. The flaws, discovered by Horizon3.ai researcher Zach Hanley, impact EPM versions prior to 2024 November and 2022 SU6 November. SAP also released fixes for two critical vulnerabilities in its NetWeaver ABAP Server and ABAP Platform.