Ivanti Updates Fix Critical Vulnerabilities in Endpoint Manager and Other Products
2025-01-17
Learn about the critical importance of proactive vulnerability management and how to articulate the value of robust security solutions to clients.
Ivanti has released security updates to fix critical vulnerabilities in multiple products, including Endpoint Manager (EPM), Avalanche, and Application Control Engine. The critical flaws, primarily affecting EPM, involve absolute path traversal that could allow unauthorized access to sensitive information. Ivanti also addressed high-severity vulnerabilities in Avalanche and Application Control Engine that could enable authentication bypass and information leaks. There is currently no evidence of these vulnerabilities being exploited in the wild, and Ivanti has enhanced its internal security measures to improve flaw detection and remediation.
Patch Management, Sensitive Data, Web App/Website Vulnerability
Ivanti, Endpoint Manager, Vulnerabilities, Security Updates, Path Traversal, Avalanche, Application Control Engine
CVE-2024-10811; CVE-2024-13161; CVE-2024-13160; CVE-2024-13159
Ivanti Endpoint Manager, Avalanche, Application Control Engine
Ivanti, a company known for its IT management and security solutions, has recently issued security updates to address significant vulnerabilities affecting several of its products. This development is crucial for organizations using Ivanti's solutions, as these vulnerabilities could potentially expose sensitive information to unauthorized parties. The products impacted by these vulnerabilities include Ivanti Endpoint Manager (EPM), Avalanche, and Application Control Engine. These tools are commonly used by enterprises to manage and secure their IT infrastructure. The most severe vulnerabilities are found in the Endpoint Manager. Four critical security flaws, each rated 9.8 out of 10 on the Common Vulnerability Scoring System (CVSS) scale, have been identified. These flaws involve absolute path traversal, a technique that allows attackers to access files and directories stored outside the intended folder. By exploiting these vulnerabilities, a remote, unauthenticated attacker could leak sensitive information from the system. In addition to the critical vulnerabilities in EPM, Ivanti has also patched several high-severity bugs in Avalanche and Application Control Engine. These vulnerabilities could enable attackers to bypass authentication mechanisms, leak sensitive information, and circumvent application blocking features designed to protect systems from unauthorized applications. Ivanti has stated that they have no evidence of these vulnerabilities being actively exploited in the wild. However, the company has taken proactive measures to strengthen its security posture. Ivanti has intensified its internal scanning and testing procedures to quickly identify and address potential security issues, ensuring that their products remain secure for their users. Organizations using Ivanti's products are strongly encouraged to apply the latest security updates to mitigate these risks and protect their infrastructure from potential exploitation.Critical Security Flaws in Ivanti Products
Affected Products
Vulnerability Details
Endpoint Manager (EPM)
Avalanche and Application Control Engine
Mitigation and Response
https://thehackernews.com/2025/01/researcher-uncovers-critical-flaws-in.html?m=1