Security Advisory

CVE-2025-13659

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-09 15:59:18

Last updated 2026-02-26 16:57:05

Assigner ivanti

State PUBLISHED

Description

Improper control of dynamically managed code resources in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote, unauthenticated attacker to write arbitrary files on the server, potentially leading to remote code execution. User interaction is required.

← Browse all CVEs View on cve.org ↗