Description:
Ivanti has released security advisories to address multiple vulnerabilities in Ivanti Endpoint Manager. Detailed information about the vulnerabilities can be found at:
https://forums.ivanti.com/s/article/kA1UL0000007vmL0AQ
https://forums.ivanti.com/s/article/kA1UL0000006pe90AA
Affected Systems:
- Ivanti Endpoint Manager prior to version 2024 SU5
For detailed information of the affected systems, please refer to the corresponding security advisory at vendor's website.
Impact:
Successful exploitation of the vulnerabilities could lead to remote code execution, elevation of privilege, information disclosure or security restriction bypass on an affected system.
Recommendation:
Patches for affected systems are available. System administrators of affected systems should follow the recommendations provided by the vendor and take immediate actions to mitigate the risk.
More Information:
- https:// forums.ivanti.com/s/article/kA1UL0000007vmL0AQ
- https://forums.ivanti.com/s/article/kA1UL0000006pe90AA
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-9713
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11622
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-11623
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62383
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62384
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62385
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62386
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62387
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62388
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62389
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62390
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62391
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62392
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1602
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1603
