ГлавнаяУязвимости → CVE-2025-4428
7.2высокая

CVE-2025-4428

Описание

Remote Code Execution in API component in Ivanti Endpoint Manager Mobile 12.5.0.0 and prior on unspecified platforms allows authenticated attackers to execute arbitrary code via crafted API requests.

Затрагиваемое ПО
Ivanti Endpoint manager mobile
CVSS
Балл7.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Источники
https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Endpoint-Manager-Mobile-EPMMhttps://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-4428