CVE-2025-22460
published 2025-05-13CVE-2025-22460: Default credentials in Ivanti Cloud Services Application before version 5.0.5 allows a local authenticated attacker to escalate their privileges.
PriorityP340high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
0.33%
24.3th percentile
Default credentials in Ivanti Cloud Services Application before version 5.0.5 allows a local authenticated attacker to escalate their privileges.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ivanti | cloud_services_appliance | < 5.0.5 | 5.0.5 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-9589-rvqc-62cg: Default credentials in Ivanti Cloud Services Application before version 5
ghsa_unreviewed·2025-05-13
CVE-2025-22460 [HIGH] CWE-1392 GHSA-9589-rvqc-62cg: Default credentials in Ivanti Cloud Services Application before version 5
Default credentials in Ivanti Cloud Services Application before version 5.0.5 allows a local authenticated attacker to escalate their privileges.
Ivanti
Ivanti Security Advisory: CVE-2025-22460
vendor_ivanti·2025-05-13·CVSS 7.8
CVE-2025-22460 [HIGH] CWE-1392 Ivanti Security Advisory: CVE-2025-22460
Ivanti Security Advisory: CVE-2025-22460
Default credentials in Ivanti Cloud Services Application before version 5.0.5 allows a local authenticated attacker to escalate their privileges.
CVE IDs: CVE-2025-22460
CVSS Base Score: 7.8
Severity: HIGH
CWEs: CWE-1392
No detection rules found.
No public exploits indexed.
Bleepingcomputer
Ivanti fixes EPMM zero-days chained in code execution attacks
blogs_bleepingcomputer·2025-05-13·CVSS 5.3
[MEDIUM] Ivanti fixes EPMM zero-days chained in code execution attacks
## Ivanti fixes EPMM zero-days chained in code execution attacks
## Sergiu Gatlan
Ivanti warned customers today to patch their Ivanti Endpoint Manager Mobile (EPMM) software against two security vulnerabilities chained in attacks to gain remote code execution.
"Ivanti has released updates for Endpoint Manager Mobile (EPMM) which addresses one medium and one high severity vulnerability," the company said .
"When chained together, successful exploitation could lead to unauthenticated remote code execution. We are aware of a very limited number of customers whose solution has been exploited at the time of disclosure."
The first security flaw ( CVE-2025-4427 ) is an authentication bypass in EPMM's API component, allowing attackers to access protected resources on vulnerable devices. The s
Bleepingcomputer
Ivanti warns of critical Neurons for ITSM auth bypass flaw
blogs_bleepingcomputer·2025-05-13·CVSS 7.8
CVE-2025-22462 [HIGH] Ivanti warns of critical Neurons for ITSM auth bypass flaw
## Ivanti warns of critical Neurons for ITSM auth bypass flaw
## Sergiu Gatlan
Ivanti has released security updates for its Neurons for ITSM IT service management solution that mitigate a critical authentication bypass vulnerability.
Tracked as CVE-2025-22462, the security flaw can let unauthenticated attackers gain administrative access to unpatched systems in low-complexity attacks, depending on system configuration.
As the company highlighted in a security advisory released today, organizations that followed its guidance are less exposed to attacks.
"Customers who have followed Ivanti's guidance on securing the IIS website and restricted access to a limited number of IP addresses and domain names have a reduced risk to their environment," Ivanti said .
"Customers who have users l
2025-05-13
Published