CVE-2024-13161 - Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability

Ivanti | Endpoint Manager (EPM)

• Date Added:
• 2025-03-10

• Due Date:
• 2025-03-31

Vulnerability Name

Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability

Description

Ivanti Endpoint Manager (EPM) contains an absolute path traversal vulnerability that allows a remote unauthenticated attacker to leak sensitive information.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Additional Notes

https://forums.ivanti.com/s/article/Security-Advisory-EPM-January-2025-for-EPM-2024-and-EPM-2022-SU6?language=en_US ; https://nvd.nist.gov/vuln/detail/CVE-2024-13161

Top Security News

Microsoft confirms it's killing off Skype in May, after 14 years

U.S. recovers $31 million stolen in 2021 Uranium Finance hack

New ClickFix attack deploys Havoc C2 via Microsoft Sharepoint

Mozilla Updates Firefox Terms Again After Backlash Over Broad Data License Language

Hackers Use ClickFix Trick to Deploy PowerShell-Based Havoc C2 via SharePoint Sites

Toronto Zoo shares update on last year's ransomware attack

YouTube warns of AI-generated video of its CEO used in phishing attacks

BadBox malware disrupted on 500K infected Android devices

Top Alert List

Content Security Policy (CSP) Header Not Set

CSP

MediumAbsence of Anti-CSRF Tokens

MediumMissing Anti-clickjacking Header

MediumContent Security Policy (CSP) Header Not Set

InformationalInformation Disclosure - Suspicious Comments

LowCross-Domain JavaScript Source File Inclusion

InformationalRe-examine Cache-control Directives

HighPII Disclosure

MediumCross-Domain Misconfiguration

Top CVE List

CVE-2024-50302 Linux Kernel Use of Uninitialized Resource Vulnerability

CVE-2025-22224 VMware ESXi and Workstation TOCTOU Race Condition Vulnerability

CVE-2025-22225 VMware ESXi Arbitrary Write Vulnerability

CVE-2025-22226 VMware ESXi, Workstation, and Fusion Information Disclosure Vulnerability

CVE-2022-43769 Hitachi Vantara Pentaho BA Server Special Element Injection Vulnerability

CVE-2022-43939 Hitachi Vantara Pentaho BA Server Authorization Bypass Vulnerability

CVE-2018-8639 Microsoft Windows Win32k Improper Resource Shutdown or Release Vulnerability

CVE-2024-49035 Microsoft Partner Center Improper Access Control Vulnerability

CVE-2025-24989 Microsoft Power Pages Improper Access Control Vulnerability

CVE-2023-20118 Cisco Small Business RV Series Routers Command Injection Vulnerability

Top CWE List

CWE-693 Protection Mechanism Failure

CWE-1426 Improper Validation of Generative AI Output

HighCWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

HighCWE-200 Exposure of Sensitive Information to an Unauthorized Actor

CWE-1125 Excessive Attack Surface

CWE-1298 Hardware Logic Contains Race Conditions

CWE-1101 Reliance on Runtime Component in Generated Code

CWE-1173 Improper Use of Validation Framework

CWE-1191 On-Chip Debug and Test Interface With Improper Access Control

CWE-1193 Power-On of Untrusted Execution Core Before Enabling Fabric Access Control