Vulnerabilities > CVE-2024-13159 - Unspecified vulnerability in Ivanti Endpoint Manager 2021.1.1/2022/2024
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to leak sensitive information.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 9 |