Security Advisory

Ivanti Product Security Update Advisory

  • Oct 15 2025
Ivanti Product Security Update Advisory

Overview

 

We have released a security update to fix vulnerabilities in Ivanti products. Users of affected products are advised to update to the latest version.
 

 

Affected Products

 

CVE-2025-10242, CVE-2025-10243, CVE-2025-10985

 

Ivanti Endpoint Manager Mobile (EPMM) Versions: 12.6.0.1 and earlier
Ivanti Endpoint Manager Mobile (EPMM) Versions: 12.5.0.2 and earlier
Ivanti Endpoint Manager Mobile (EPMM) Version: 12.4.0.3 and earlier

 

CVE-2025-11622, CVE-2025-9713

 

Ivanti Endpoint Manager version: 2024 SU3 SR1 and earlier
Ivanti Endpoint Manager version: 2022 SU8 SR2 and earlier

 

Ivanti Neurons for MDM

 

Ivanti Neurons for MDM version: R118 and earlier

 

 

Resolved Vulnerabilities

 

OS Command Injection Vulnerability in the Ivanti EPMM Administrator Panel (CVE-2025-10242)
OS Command Injection Vulnerability in the Ivanti EPMM Administrator Panel (CVE-2025-10243)
OS Command Injection Vulnerability in the Ivanti EPMM Administrator Panel (CVE-2025-10985)
Insecure Deserialization Vulnerability in Ivanti Endpoint Manager (CVE-2025-11622)
Path Traversal Vulnerability in Ivanti Endpoint Manager (CVE-2025-9713)

Missing Privilege Vulnerability in Ivanti Neurons for MDM (CVE-2025-9713)
Multi-Factor Authentication (MFA) Bypass Vulnerability in Ivanti Neurons for MDM

 

Vulnerability Patches

Vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

 

CVE-2025-10242, CVE-2025-10243, CVE-2025-10985

 

Ivanti Endpoint Manager Mobile (EPMM) Version: 12.6.0.2
Ivanti Endpoint Manager Mobile (EPMM) Version: 12.5.0.4
Ivanti Endpoint Manager Mobile (EPMM) version: 12.4.0.4

 

CVE-2025-11622, CVE-2025-9713

 

Ivanti Endpoint Manager version: 2024 SU4 [2]

 

Ivanti Neurons for MDM

 

Ivanti Neurons for MDM version: R119

 

 

References

 

[1] Security Advisory Endpoint Manager Mobile (EPMM) 10/2025 (Multiple CVEs)
https://forums.ivanti.com/s/article/Security-Advisory-Endpoint-Manager-Mobile-EPMM-10-2025-Multiple..
[2] Security Advisory Ivanti Endpoint Manager (EPM) October 2025
https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Endpoint-Manager-EPM-October-2025?lang..

[3] October 2025 Security Advisory Ivanti Neurons for MDM
october 2025 https://forums.ivanti.com/s/article/October-2025-Security-Advisory-Ivanti-Neurons-for-MDM?language=..

Tags:
Previous Post

Next Post