A vulnerability, which was classified as critical , was found in Ivanti Endpoint Manager up to 2024 SU5 . The affected element is an unknown function of the component Web Console . Such manipulation leads to sql injection. This vulnerability is referenced as CVE-2026-8111 . It is possible to launch the attack remotely. No exploit is available. You should upgrade the affected component.