CNNVD-202512-1571 Information
Dec 09, 2025
cve
CNNVD ID
CNNVD-202512-1571
Related CVE
- CNNVD Published: 2025-12-09
Description (Chinese)
Ivanti Endpoint Manager(EPM)是美国Ivanti公司的一套端点安全管理器。 Ivanti Endpoint Manager(EPM) 2024 SU4 SR1之前版本存在路径遍历漏洞,该漏洞源于路径遍历,可能导致任意文件写入。
Description (English)
Ivanti Endpoint Manager (EPM) is an end-point security manager for Ivanti USA. The previous version of Ivanti Endpoint Manager (EPM) 2024 SU4 SR1 had a loophole in the path, which originated in the path and could lead to any document being written.
Hazard Level
Medium
Vulnerability Type
路径遍历
Affected Vendor
Ivanti
Published
2025-12-09
Last Modified
2026-02-24
References
https://forums.ivanti.com/s/article/Security-Advisory-EPM-December-2025-for-EPM-2024
Patch
https://forums.ivanti.com/s/article/Security-Advisory-EPM-December-2025-for-EPM-2024
Share on: