SEC Consult SA-20250422-0:: Local Privilege Escalation via DLL Search Order Hijacking – Full Disclosure
Posted by SEC Consult Vulnerability Lab via Fulldisclosure on May 16
SEC Consult Vulnerability Lab Security Advisory < 20250422-0 >
=======================================================================
title: Local Privilege Escalation via DLL Search Order Hijacking
product: Ivanti Endpoint Manager Security Scan (Vulscan) Self
Update
vulnerable version: EPM 2022 SU6 and previous, EPM 2024
fixed version: EPM 2022 SU7 and EPM 2024 SU1
CVE number: CVE-2025-22458…
– Read More – Full Disclosure