Unrated severityNVD Advisory· Published Nov 11, 2025· Updated Nov 12, 2025
CVE-2025-10918
CVE-2025-10918
Description
Insecure default permissions in the agent of Ivanti Endpoint Manager before version 2024 SU4 allows a local authenticated attacker to write arbitrary files anywhere on disk
Affected products
2<2024 SU4+ 1 more
- (no CPE)range: <2024 SU4
- (no CPE)range: 2024 SU4
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.