Known vulnerabilities in Ivanti Endpoint Manager

[]

Known vulnerabilities in Ivanti Endpoint Manager

Vendor: Ivanti

Website: https://www.ivanti.com/

Total Security Bulletins: 17

Security bulletins (17)

Secuity bulletin	Severity	Status	Published
SB2026021080: Multiple vulnerabilities in Ivanti Endpoint Manager	High	Patched	10.02.2026
SB2025120941: Multiple vulnerabilities in Ivanti Endpoint Manager (EPM)	High	Patched	09.12.2025
SB2025111171: Privilege escalation in Ivanti Endpoint Manager	Low	Patched	11.11.2025
SB20251014100: Multiple SQL injection vulnerabilities in Ivanti Endpoint Manager (EPM)	Medium	Not patched	14.10.2025
SB2025101499: Two vulnerabilities in Ivanti Endpoint Manager (EPM)	High	Patched	14.10.2025
SB2025090961: Arbitrary file upload in Ivanti Endpoint Manager	High	Patched	09.09.2025
SB2025070872: Multiple vulnerabilities in Ivanti Endpoint Manager (EPM)	Low	Patched	08.07.2025
SB2025040855: Multiple vulnerabilities in Ivanti Endpoint Manager	Medium	Patched	08.04.2025
SB2025011595: Multiple vulnerabilities in Ivanti Endpoint Manager	High	Patched Exploited	15.01.2025
SB2024122760: Ivanti Endpoint Manager update for Patch SDK	Low	Patched	27.12.2024
SB20241115102: Multiple vulnerabilities in Ivanti Endpoint Manager	High	Patched	15.11.2024
SB2024091108: Multiple vulnerabilities in Ivanti Endpoint Manager	Critical	Patched Public exploit	11.09.2024
SB2024071824: SQL injection in Ivanti Endpoint Manager	Low	Patched	18.07.2024
SB2024052218: Multiple SQL injection vulnerabilities in Ivanti Endpoint Manager	Critical	Patched Exploited	22.05.2024
SB2024010510: SQL injection in Ivanti Endpoint Manager	High	Patched	05.01.2024
SB2023100609: Remote code execution in Ivanti Endpoint Manager	High	Patched	06.10.2023
SB2021120828: Code injection in Ivanti Endpoint Manager	Critical	Patched Exploited	08.12.2021