Primary

Context

Ivanti Endpoint Manager Improper Control of Dynamically Managed Code Resources Vulnerability Allowing Arbitrary File Write and Potential Remote Code Execution

Vulnerability

Patched

A vulnerability in Ivanti Endpoint Manager (EPM) prior to version 2024 SU4 SR1 allows remote, unauthenticated attackers to write arbitrary files on the server, potentially leading to remote code execution. This issue arises from improper control of dynamically managed code resources. Exploitation of this vulnerability requires user interaction and connecting to an untrusted core server.

Impact

Successful exploitation allows for arbitrary file writing on the server, with the potential for remote code execution.

Remediation

Users can upgrade to Ivanti Endpoint Manager 2024 SU4 SR1, available through the Ivanti License System. This update applies to EPM 2024 SU4 core consoles and remote consoles.

Added: Dec 9, 2025, 8:48 PM

Updated: Dec 9, 2025, 8:48 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

7.5

exploitability

6.0

remediation

7.9

relevance

1.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

7.5

exploitability

6.0

remediation

7.9

relevance

1.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Ivanti Endpoint Manager Improper Control of Dynamically Managed Code Resources Vulnerability Allowing Arbitrary File Write and Potential Remote Code Execution

Vulnerability

Impact

Remediation

Affected Products

Ivanti Endpoint Manager

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating