CVE-2024-13161 | Armis Vulnerability Intelligence Database

Description Preview

CVE-2024-13161 is a critical vulnerability found in Ivanti Endpoint Manager (EPM) prior to the 2024 January-2025 Security Update and the 2022 SU6 January-2025 Security Update. This vulnerability allows remote unauthenticated attackers to exploit absolute path traversal, potentially leading to the leakage of sensitive information. The vulnerability has a CVSS score of 9.8, indicating a high severity level, with significant impacts on confidentiality, integrity, and availability.

Overview

CVE ID: CVE-2024-13161
Vendor: Ivanti
Affected Products: Ivanti Endpoint Manager (EPM)
Affected Versions: Versions prior to the 2024 January-2025 Security Update and the 2022 SU6 January-2025 Security Update.
Vulnerability Type: Absolute Path Traversal (CWE-36)
Attack Vector: Network
Attack Complexity: Low
Privileges Required: None
User Interaction: None
Impact: High impact on confidentiality, integrity, and availability.

Remediation

To mitigate the risks associated with CVE-2024-13161, it is recommended that users of Ivanti Endpoint Manager upgrade to the following unaffected versions:

2024 January-2025 Security Update
2022 SU6 January-2025 Security Update

Users should apply these updates as soon as possible to protect against potential exploitation of this vulnerability.

References

Early Warning

Customers using Armis Early Warning were notified about this vulnerability before it appeared in CISA's Known Exploited Vulnerabilities Catalog, enabling them to assess their exposure and act proactively. Armis offers these examples of CVEs already included in CISA KEV for potential customers. Click here to learn how to receive alerts earlier.

Armis Alert Date: Jan 14, 2025
CISA KEV Date: Mar 10, 2025

55days early

Industry ExposureMost to least
This section illustrates the prevalence of a specific Common Vulnerabilities and Exposures (CVE) across various industries based on customer reports. The ranking displays industries from the most to least affected by this particular vulnerability, offering valuable insight into where this CVE has been most frequently observed. This information can help organizations within these sectors prioritize their security efforts, understand their relative risk exposure compared to their peers, and focus remediation strategies where they are most needed. By understanding the industry-specific impact, organizations can make more informed decisions regarding patching, resource allocation, and overall risk management related to this CVE.

Public Administration: Low
Public Administration
Health Care & Social Assistance: Low
Health Care & Social Assistance
Professional, Scientific, & Technical Services: Low
Professional, Scientific, & Technical Services
Retail Trade: Low
Retail Trade
Utilities: Low
Utilities
Accommodation & Food Services: Low
Accommodation & Food Services
Administrative, Support, Waste Management & Remediation Services: Low
Administrative, Support, Waste Management & Remediation Services
Agriculture, Forestry Fishing & Hunting: Low
Agriculture, Forestry Fishing & Hunting
Arts, Entertainment & Recreation: Low
Arts, Entertainment & Recreation
Construction: Low
Construction
Educational Services: Low
Educational Services
Finance and Insurance: Low
Finance and Insurance
Information: Low
Information
Management of Companies & Enterprises: Low
Management of Companies & Enterprises
Manufacturing: Low
Manufacturing
Mining: Low
Mining
Other Services (except Public Administration): Low
Other Services (except Public Administration)
Real Estate Rental & Leasing: Low
Real Estate Rental & Leasing
Transportation & Warehousing: Low
Transportation & Warehousing
Wholesale Trade: Low
Wholesale Trade

^{CVE-2024-13161:}Absolute path traversal vulnerability in Ivanti Endpoint Manager (EPM) allows a remote unauthenticated attacker to leak sensitive information.

Description Preview

Overview

Remediation

References

Early Warning

Focus on What Matters

Let's talk!