exploitDog

GHSA-jmwc-734c-7frf

Опубликовано: 09 дек. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.1

Описание

Path traversal in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote authenticated attacker to write arbitrary files outside of the intended directory. User interaction is required.

Path traversal in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote authenticated attacker to write arbitrary files outside of the intended directory. User interaction is required.

Ссылки

EPSS

Процентиль: 64%

0.00468

Низкий

7.1 High

CVSS3

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2025-13661

CVSS3: 7.1

nvd

2 месяца назад

Path traversal in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote authenticated attacker to write arbitrary files outside of the intended directory. User interaction is required.

EPSS

Процентиль: 64%

0.00468

Низкий

7.1 High

CVSS3

CVE ID

Дефекты

CWE-22