Primary

Context

Ivanti Endpoint Manager Privilege Escalation Vulnerability

Vulnerability

Patched

A privilege escalation vulnerability has been identified in Ivanti Endpoint Manager (EPM) versions prior to the January 2025 Security Update for both the 2024 and 2022 SU6 releases. This vulnerability allows a local authenticated attacker to escalate privileges by exploiting an out-of-bounds read condition.

Impact

Exploitation of this vulnerability allows for unauthorized privilege escalation, enabling a local authenticated attacker to gain elevated rights within the application or system.

Remediation

Users can apply the January 2025 Security Update for Ivanti Endpoint Manager 2024 or the January 2025 Security Update for Ivanti Endpoint Manager 2022 SU6. These updates are available through the Ivanti License System (ILS). After applying the patch, it's recommended to run the AgentEngineHashUpdate.exe to update the hash values in the database.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

5.0

exploitability

3.5

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

5.0

exploitability

3.5

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Ivanti Endpoint Manager Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Ivanti Endpoint Manager

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating