2025-04-08 14:27:27
ivanti
PUBLISHED
Reflected XSS in Ivanti Endpoint Manager before version 2024 SU1 or before version 2022 SU7 allows a remote unauthenticated attacker to execute arbitrary javascript in a victims browser. Unlikely user interaction is required.