CVE-2026-8111: SQL Injection
Published May 12, 2026
·Updated
SQL injection in the web console of Ivanti Endpoint Manager before version 2024 SU6 allows a remote authenticated attacker to achieve remote code execution.
Affected Software
10 affected components
Ivanti Ivanti Endpoint Manager<2024 SU6
Ivanti Endpoint Manager<=2022
Ivanti Endpoint Manager=2024
Ivanti Endpoint Manager=2024-su1
Ivanti Endpoint Manager=2024-su2
Ivanti Endpoint Manager=2024-su3
Ivanti Endpoint Manager=2024-su3_security_release_1
Ivanti Endpoint Manager=2024-su4
Ivanti Endpoint Manager=2024-su4_security_release_1
Ivanti Endpoint Manager=2024-su5
Event History
May 12, 2026
CVE Published
via MITRE·02:33 PM
Data Sourced
via MITRE·02:33 PM
DescriptionSeverityWeakness
Data Sourced
via NVD·03:16 PM
DescriptionSeverityWeaknessAffected Software
Oct 31, 58347
Event
via FIRST·08:53 AM
Frequently Asked Questions
1
What is the severity of CVE-2026-8111?
CVE-2026-8111 has a high severity rating due to its potential for remote code execution.
2
How do I fix CVE-2026-8111?
To fix CVE-2026-8111, upgrade your Ivanti Endpoint Manager to version 2024 SU6 or later.
3
What types of attacks can CVE-2026-8111 facilitate?
CVE-2026-8111 can facilitate SQL injection attacks that lead to remote code execution.
4
Who is affected by CVE-2026-8111?
Organizations using Ivanti Endpoint Manager versions prior to 2024 SU6 are affected by CVE-2026-8111.
5
Are both authenticated and unauthenticated users vulnerable to CVE-2026-8111?
Only remote authenticated attackers can exploit CVE-2026-8111 to execute remote code.