ГлавнаяУязвимости → CVE-2025-22458
7.8высокая

CVE-2025-22458

Описание

DLL hijacking in Ivanti Endpoint Manager before version 2024 SU1 or before version 2022 SU7 allows an authenticated attacker to escalate to System.

Затрагиваемое ПО
Ivanti Endpoint manager
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://forums.ivanti.com/s/article/Security-Advisory-EPM-April-2025-for-EPM-2024-and-EPM-2022-SU6http://seclists.org/fulldisclosure/2025/May/17