cnvd - cnvd-2025-09949

cnvd-2025-09949

Vulnerability from cnvd

Title: Ivanti Endpoint Manager Mobile身份认证绕过漏洞

Description:

Ivanti Endpoint Manager Mobile（EPMM）是一款企业级的移动设备管理解决方案，用于集中管理和保护企业中的移动设备，支持设备注册、应用分发、安全策略实施等功能。

Ivanti Endpoint Manager Mobile存在身份认证绕过漏洞，该漏洞源于API组件未能正确验证输入数据，攻击者可利用该漏洞通过精心构造的API请求绕过认证机制。

Severity: 中

Patch Name: Ivanti Endpoint Manager Mobile身份认证绕过漏洞的补丁

Patch Description:

Ivanti Endpoint Manager Mobile存在身份认证绕过漏洞，该漏洞源于API组件未能正确验证输入数据，攻击者可利用该漏洞通过精心构造的API请求绕过认证机制。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

Ivanti已发布安全更新，用户应立即升级到修复版本： https://forums.ivanti.com/s/product-downloads

Impacted products

Name
Ivanti. Ivanti Endpoint Manager Mobile <=12.5.0.0

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2025-4427"
    }
  },
  "description": "Ivanti Endpoint Manager Mobile\uff08EPMM\uff09\u662f\u4e00\u6b3e\u4f01\u4e1a\u7ea7\u7684\u79fb\u52a8\u8bbe\u5907\u7ba1\u7406\u89e3\u51b3\u65b9\u6848\uff0c\u7528\u4e8e\u96c6\u4e2d\u7ba1\u7406\u548c\u4fdd\u62a4\u4f01\u4e1a\u4e2d\u7684\u79fb\u52a8\u8bbe\u5907\uff0c\u652f\u6301\u8bbe\u5907\u6ce8\u518c\u3001\u5e94\u7528\u5206\u53d1\u3001\u5b89\u5168\u7b56\u7565\u5b9e\u65bd\u7b49\u529f\u80fd\u3002\n\nIvanti Endpoint Manager Mobile\u5b58\u5728\u8eab\u4efd\u8ba4\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8eAPI\u7ec4\u4ef6\u672a\u80fd\u6b63\u786e\u9a8c\u8bc1\u8f93\u5165\u6570\u636e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u7cbe\u5fc3\u6784\u9020\u7684API\u8bf7\u6c42\u7ed5\u8fc7\u8ba4\u8bc1\u673a\u5236\u3002",
  "formalWay": "Ivanti\u5df2\u53d1\u5e03\u5b89\u5168\u66f4\u65b0\uff0c\u7528\u6237\u5e94\u7acb\u5373\u5347\u7ea7\u5230\u4fee\u590d\u7248\u672c\uff1a\r\nhttps://forums.ivanti.com/s/product-downloads",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2025-09949",
  "openTime": "2025-05-16",
  "patchDescription": "Ivanti Endpoint Manager Mobile\uff08EPMM\uff09\u662f\u4e00\u6b3e\u4f01\u4e1a\u7ea7\u7684\u79fb\u52a8\u8bbe\u5907\u7ba1\u7406\u89e3\u51b3\u65b9\u6848\uff0c\u7528\u4e8e\u96c6\u4e2d\u7ba1\u7406\u548c\u4fdd\u62a4\u4f01\u4e1a\u4e2d\u7684\u79fb\u52a8\u8bbe\u5907\uff0c\u652f\u6301\u8bbe\u5907\u6ce8\u518c\u3001\u5e94\u7528\u5206\u53d1\u3001\u5b89\u5168\u7b56\u7565\u5b9e\u65bd\u7b49\u529f\u80fd\u3002\r\n\r\nIvanti Endpoint Manager Mobile\u5b58\u5728\u8eab\u4efd\u8ba4\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8eAPI\u7ec4\u4ef6\u672a\u80fd\u6b63\u786e\u9a8c\u8bc1\u8f93\u5165\u6570\u636e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u7cbe\u5fc3\u6784\u9020\u7684API\u8bf7\u6c42\u7ed5\u8fc7\u8ba4\u8bc1\u673a\u5236\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Ivanti Endpoint Manager Mobile\u8eab\u4efd\u8ba4\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Ivanti. Ivanti Endpoint Manager Mobile \u003c=12.5.0.0"
  },
  "serverity": "\u4e2d",
  "submitTime": "2025-05-16",
  "title": "Ivanti Endpoint Manager Mobile\u8eab\u4efd\u8ba4\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e"
}

CVE-2025-4427 (GCVE-0-2025-4427)

Vulnerability from cvelistv5

Published

2025-05-13 15:45

Modified

2025-07-30 01:36

Severity ?

5.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE

CWE-288 - Authentication Bypass Using an Alternate Path or Channel

Summary

An authentication bypass in the API component of Ivanti Endpoint Manager Mobile 12.5.0.0 and prior allows attackers to access protected resources without proper credentials via the API.

References

▼	URL	Tags
	https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Endpoint-Manager-Mobile-EPMM

Impacted products

	Vendor	Product	Version
	Ivanti	Endpoint Manager Mobile

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-4427",
                "options": [
                  {
                    "Exploitation": "active"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-05-21T03:55:30.347168Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          },
          {
            "other": {
              "content": {
                "dateAdded": "2025-05-19",
                "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-4427"
              },
              "type": "kev"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-07-30T01:36:12.862Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "timeline": [
          {
            "lang": "en",
            "time": "2025-05-19T00:00:00+00:00",
            "value": "CVE-2025-4427 added to CISA KEV"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "affected",
          "product": "Endpoint Manager Mobile",
          "vendor": "Ivanti",
          "versions": [
            {
              "status": "unaffected",
              "version": "12.5.0.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "An authentication bypass in the API component of Ivanti Endpoint Manager Mobile 12.5.0.0 and prior allows attackers to access protected resources without proper credentials via the API."
            }
          ],
          "value": "An authentication bypass in the API component of Ivanti Endpoint Manager Mobile 12.5.0.0 and prior allows attackers to access protected resources without proper credentials via the API."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-115",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-115 Authentication Bypass"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-288",
              "description": "CWE-288: Authentication Bypass Using an Alternate Path or Channel",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-13T15:45:35.749Z",
        "orgId": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75",
        "shortName": "ivanti"
      },
      "references": [
        {
          "url": "https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Endpoint-Manager-Mobile-EPMM"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Authentication Bypass",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75",
    "assignerShortName": "ivanti",
    "cveId": "CVE-2025-4427",
    "datePublished": "2025-05-13T15:45:35.145Z",
    "dateReserved": "2025-05-08T07:50:50.421Z",
    "dateUpdated": "2025-07-30T01:36:12.862Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted