SecuriTricks - CVE-2025-13661

Description

Path traversal in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote authenticated attacker to write arbitrary files outside of the intended directory. User interaction is required.

Product(s) Impacted

Vendor	Product	Versions
Ivanti	Endpoint Manager	*, 2024

Weaknesses

Common security weaknesses mapped to this vulnerability.

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

*CPE(s)

Affected systems and software identified for this CVE.

Type	Vendor	Product	Version	Update	Edition	Language	Software Edition	Target Software	Target Hardware	Other Information
a	ivanti	endpoint_manager	/	/	/	/	/	/	/	/
a	ivanti	endpoint_manager	2024	-	/	/	/	/	/	/
a	ivanti	endpoint_manager	2024	su1	/	/	/	/	/	/
a	ivanti	endpoint_manager	2024	su2	/	/	/	/	/	/
a	ivanti	endpoint_manager	2024	su3	/	/	/	/	/	/
a	ivanti	endpoint_manager	2024	su3_security_release_1	/	/	/	/	/	/
a	ivanti	endpoint_manager	2024	su4	/	/	/	/	/	/

References

https://forums.ivanti.com/s/article/Security-Advisory-EPM-December-2025-for-EPM-2024

CVSS Score

7.1 / 10

CVSS Data - 3.1

Attack Vector: NETWORK
Attack Complexity: HIGH
Privileges Required: LOW
Scope: UNCHANGED
Confidentiality Impact: HIGH
Integrity Impact: HIGH
Availability Impact: HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

View Vector String

Timeline

Published: Dec. 9, 2025, 4:17 p.m.
Last Modified: Dec. 11, 2025, 5:28 p.m.

Status : Analyzed

CVE has had analysis completed and all data associations made.

More info

Source

3c1d8aa1-5a33-4ea4-8992-aadd6440af75

CVE-2025-13661