PT-2025-15438 · Ivanti · Ivanti Endpoint Manager
Published
2025-04-08
·
Updated
2025-04-08
·
CVE-2025-22464
CVSS v3.1
6.1
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H |
Name of the Vulnerable Software and Affected Versions:
Ivanti Endpoint Manager versions prior to 2024 SU1
Ivanti Endpoint Manager versions prior to 2022 SU7
Description:
The issue is related to an untrusted pointer dereference, allowing an attacker with local access to write arbitrary data into memory. This can cause a denial-of-service condition.
Recommendations:
For versions prior to 2024 SU1, update to version 2024 SU1 or later.
For versions prior to 2022 SU7, update to version 2022 SU7 or later.
Fix
Untrusted Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ivanti Endpoint Manager