CVE-2026-1602
published 2026-02-10CVE-2026-1602: SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database.
PriorityP349medium6.5CVSS 3.1
AVNACLPRLUINSUCHINAN
EPSS
0.69%
47.9th percentile
SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ivanti | endpoint_manager | < 2024 | 2024 |
| ivanti | endpoint_manager | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-wh95-q2jr-gp4h: SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database
ghsa_unreviewed·2026-02-10
CVE-2026-1602 [MEDIUM] CWE-89 GHSA-wh95-q2jr-gp4h: SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database
SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database.
Ivanti
Ivanti Security Advisory: CVE-2026-1602
vendor_ivanti·2026-02-10·CVSS 6.5
CVE-2026-1602 [MEDIUM] CWE-89 Ivanti Security Advisory: CVE-2026-1602
Ivanti Security Advisory: CVE-2026-1602
SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database.
CVE IDs: CVE-2026-1602
CVSS Base Score: 6.5
Severity: MEDIUM
CWEs: CWE-89
No detection rules found.
No public exploits indexed.
Wiz
CVE-2025-13659 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.8
CVE-2025-13659 [HIGH] CVE-2025-13659 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-13659 :
Ivanti Endpoint Manager vulnerability analysis and mitigation
Improper control of dynamically managed code resources in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote, unauthenticated attacker to write arbitrary files on the server, potentially leading to remote code execution. User interaction is required.
Source : NVD
## 8.8
Score
Published December 9, 2025
Severity HIGH
CNA Score 8.8
Affected Technologies
Ivanti Endpoint Manager
Ivanti Endpoint Manager Windows Agent
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 77.4
Exploitation Probability (EPSS) 1
Affected packages and libraries
cpe:2.3:a:ivanti:endpoint_manager
Sources
Linux Seve
Wiz
CVE-2025-10573 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.6
CVE-2025-10573 [CRITICAL] CVE-2025-10573 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-10573 :
Ivanti Endpoint Manager vulnerability analysis and mitigation
Stored XSS in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote unauthenticated attacker to execute arbitrary JavaScript in the context of an administrator session. User interaction is required.
Source : NVD
## 6.1
Score
Published December 9, 2025
Severity MEDIUM
CNA Score 9.6
Affected Technologies
Ivanti Endpoint Manager
Ivanti Endpoint Manager Windows Agent
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 12.3
Exploitation Probability (EPSS) N/A
Affected packages and libraries
cpe:2.3:a:ivanti:endpoint_manager
Sources
Linux Severity MEDIUM No Fix Added at: Dec 12, 2025
Windows
Wiz
CVE-2025-13661 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.8
CVE-2025-13661 [HIGH] CVE-2025-13661 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-13661 :
Ivanti Endpoint Manager vulnerability analysis and mitigation
Path traversal in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote authenticated attacker to write arbitrary files outside of the intended directory. User interaction is required.
Source : NVD
## 8
Score
Published December 9, 2025
Severity HIGH
CNA Score 7.1
Affected Technologies
Ivanti Endpoint Manager
Ivanti Endpoint Manager Windows Agent
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 83.7
Exploitation Probability (EPSS) 2
Affected packages and libraries
cpe:2.3:a:ivanti:endpoint_manager
Sources
Linux Severity HIGH No Fix Added at: Dec 12, 2025
Windows Severity HIGH No Fix A
Wiz
CVE-2026-1602 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.8
CVE-2026-1602 [HIGH] CVE-2026-1602 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-1602 :
Ivanti Endpoint Manager vulnerability analysis and mitigation
SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database.
Source : NVD
## 6.5
Score
Published February 10, 2026
Severity MEDIUM
CNA Score 6.5
Affected Technologies
Ivanti Endpoint Manager
Ivanti Endpoint Manager Windows Agent
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 20.8
Exploitation Probability (EPSS) 0.1
Affected packages and libraries
cpe:2.3:a:ivanti:endpoint_manager
Sources
Linux Severity MEDIUM No Fix Added at: Feb 15, 2026
Windows Severity MEDIUM No Fix Added at: Feb 15, 2026
Linux Severity MEDIUM
Wiz
CVE-2025-13662 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.8
CVE-2025-13662 [HIGH] CVE-2025-13662 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-13662 :
Ivanti Endpoint Manager vulnerability analysis and mitigation
Improper verification of cryptographic signatures in the patch management component of Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote unauthenticated attacker to execute arbitrary code. User Interaction is required.
Source : NVD
## 7.8
Score
Published December 9, 2025
Severity HIGH
CNA Score 7.8
Affected Technologies
Ivanti Endpoint Manager
Ivanti Endpoint Manager Windows Agent
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 6.9
Exploitation Probability (EPSS) N/A
Affected packages and libraries
cpe:2.3:a:ivanti:endpoint_manager
Sources
Linux Severity HIGH No Fix Added at: Dec
Wiz
CVE-2026-1603 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 8.8
CVE-2026-1603 [HIGH] CVE-2026-1603 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-1603 :
Ivanti Endpoint Manager vulnerability analysis and mitigation
An authentication bypass in Ivanti Endpoint Manager before version 2024 SU5 allows a remote unauthenticated attacker to leak specific stored credential data.
Source : NVD
## 7.5
Score
Published February 10, 2026
Severity HIGH
CNA Score 8.6
Affected Technologies
Ivanti Endpoint Manager
Ivanti Endpoint Manager Windows Agent
Has Public Exploit Yes
Has CISA KEV Exploit Yes
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 98.3
Exploitation Probability (EPSS) 60.9
Affected packages and libraries
cpe:2.3:a:ivanti:endpoint_manager
Sources
Linux Severity HIGH No Fix Added at: Feb 15, 2026
Windows Severity HIGH No Fix Added at: Feb 15, 2026
Linux Severit
2026-02-10
Published