CVE-2025-13659

8.8HIGH

Improper control of dynamically managed code resources in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote, unauthenticated attacker to write arbitrary files on the server, potent

Publicado: 12/9/2025Actualizado: 12/11/2025
Ver en NVDVer en MITRE

Descripción

Improper control of dynamically managed code resources in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote, unauthenticated attacker to write arbitrary files on the server, potentially leading to remote code execution. User interaction is required.

Análisis IAImpulsado por IA

Productos Afectados

ivantiendpoint_manager
ivantiendpoint_manager
2024
ivantiendpoint_manager
2024
ivantiendpoint_manager
2024
ivantiendpoint_manager
2024
ivantiendpoint_manager
2024
ivantiendpoint_manager
2024

Referencias