Critical Path Traversal Vulnerabilities (CVE-2024-10811, CVE-2024-13161, CVE-2024-13160, and CVE-2024-13159) in Ivanti Endpoint Manager

Ivanti, an IT management solutions, has identified and addressed four critical vulnerabilities in its Endpoint Manager (EPM) software. These vulnerabilities, identified as CVE-2024-10811, CVE-2024-13161, CVE-2024-13160, and CVE-2024-13159, have been assigned a CVSS score of 9.8, indicating their high severity.

These vulnerabilities involve absolute path traversal flaws that allow remote, unauthenticated attackers to leak sensitive information from affected systems. Such vulnerabilities pose significant risks to organizations by potentially exposing confidential data, undermining system security, and opening pathways for further exploitation. This unauthorized access can lead to significant data breaches, exposing sensitive information and compromising the overall integrity of affected systems.

The vulnerabilities affect the following versions of Ivanti Endpoint Manager:

• EPM 2024 November Security Update and prior
• EPM 2022 SU6 November Security Update and prior

Ivanti has released patches to address these critical issues. Users are advised to update their systems to the latest security updates provided by Ivanti:

• EPM 2024 January-2025 Security Update
• EPM 2022 SU6 January-2025 Security Update

Applying these updates promptly is the most effective way to protect against potential exploitation of these vulnerabilities. As of the latest reports, there is no evidence to suggest that these vulnerabilities have been exploited in the wild. However, given their critical nature, organizations should not delay in implementing the provided patches.

These vulnerabilities underscore the importance of maintaining a proactive approach to cybersecurity, particularly for organizations using network gateway products. Organizations must prioritize patch management, not just as a reactive measure but as a fundamental component of their cybersecurity strategy.SanerNow Patch Management is a continuous, automated, and integrated software that instantly fixes risks exploited in the wild. The software supports major operating systems like Windows, Linux, and macOS, as well as 550+ third-party applications.

It also allows you to set up a safe testing area to test patches before deploying them in a primary production environment. SanerNow patch management additionally supports a patch rollback feature in case of patch failure or a system malfunction.