CVE-2025-10918 | Ivanti Endpoint Manager up to 2024 SU3 default permission

Inserito da Angelo Barbosa | Nov 11, 2025 | CVE

A vulnerability was found in Ivanti Endpoint Manager up to 2024 SU3. It has been classified as critical. Impacted is an unknown function. Performing manipulation results in incorrect default permissions.

This vulnerability is known as CVE-2025-10918. Attacking locally is a requirement. No exploit is available.

Upgrading the affected component is recommended.

CVE-2025-10918 | Ivanti Endpoint Manager up to 2024 SU3 default permission

Post correlati

CVE-2025-25635 | TOTOLINK A3002R 1.1.1-B20200824.0128 /bin/boa formIpv6Setup pppoe_dns1 buffer overflow

CVE-2024-22426 | Dell RecoverPoint for Virtual Machines up to 5.3 SP3 P2 os command injection (dsa-2024-092)

CVE-2025-9395 | wangsongyan wblog 0.0.1 backup.go RestorePost fileName server-side request forgery

CVE-2025-47529 | Experto CTA Widget Plugin up to 1.1.1 on WordPress esc_admin_side_ajax_function authorization