CVE-2025-6995

8.4HIGH

Improper use of encryption in the agent of Ivanti Endpoint Manager before version 2024 SU3 and 2022 SU8 Security Update 1 allows a local authenticated attacker to decrypt other users’ passwords.

Опубликовано: 7/8/2025Обновлено: 7/11/2025
Посмотреть на NVDПосмотреть на MITRE

Описание

Improper use of encryption in the agent of Ivanti Endpoint Manager before version 2024 SU3 and 2022 SU8 Security Update 1 allows a local authenticated attacker to decrypt other users’ passwords.

ИИ-АнализНа базе ИИ

Затронутые продукты

ivantiendpoint_manager
ivantiendpoint_manager
2022
ivantiendpoint_manager
2022
ivantiendpoint_manager
2022
ivantiendpoint_manager
2022
ivantiendpoint_manager
2022
ivantiendpoint_manager
2022
ivantiendpoint_manager
2022
ivantiendpoint_manager
2022
ivantiendpoint_manager
2022
ivantiendpoint_manager
2024
ivantiendpoint_manager
2024
ivantiendpoint_manager
2024

Ссылки