CNNVD-202512-1570 Information
Dec 09, 2025
cve
CNNVD ID
CNNVD-202512-1570
Related CVE
- CNNVD Published: 2025-12-09
Description (Chinese)
Ivanti Endpoint Manager(EPM)是美国Ivanti公司的一套端点安全管理器。 Ivanti Endpoint Manager 2024 SU4 SR1之前版本存在数据伪造问题漏洞,该漏洞源于加密签名验证不当,可能导致远程代码执行。
Description (English)
Ivanti Endpoint Manager (EPM) is an end-point security manager for Ivanti USA. The previous version of Ivanti Endpoint Manager 2024 SU4 SR1 had a loophole in the problem of data forgery, which stemmed from the improper authentication of encrypted signatures, which could lead to remote code execution.
Hazard Level
Medium
Vulnerability Type
数据伪造问题
Affected Vendor
Ivanti
Published
2025-12-09
Last Modified
2026-02-24
References
https://forums.ivanti.com/s/article/Security-Advisory-EPM-December-2025-for-EPM-2024
Patch
https://forums.ivanti.com/s/article/Security-Advisory-EPM-December-2025-for-EPM-2024
Share on: