Improper Certificate Validation in Ivanti Endpoint Manager Products
CVE-2025-22459
4.8MEDIUM
What is CVE-2025-22459?
A security issue has been identified in Ivanti Endpoint Manager which relates to improper certificate validation. This weakness permits a remote, unauthenticated attacker to potentially intercept and manipulate limited traffic between clients and servers, exposing sensitive data and compromising network integrity. This vulnerability impacts specific versions of the product, making it essential for organizations to evaluate and upgrade to secure versions.
Affected Version(s)
Endpoint Manager 2024 SU1
Endpoint Manager 2024 SU1
Endpoint Manager 2022 SU7