Tag

#endpoint-management

2 posts tagged #endpoint-management.

Analysis · May 20, 2026 · Colten Anderson

Ivanti Endpoint Manager: the management server that can be coerced into handing over credentials

CVE-2024-13159, 13160, and 13161 are path-traversal/credential-coercion flaws in Ivanti Endpoint Manager that let an attacker make the EPM server authenticate to them and relay it. It's another Ivanti product, and another privileged management server worth defending as tier-zero.
Field Note · May 15, 2026 · Colten Anderson

Recovering from a bad Intune deployment without making it worse

Stop the spread, unwind the damage, verify it took. A failure-mode-to-action playbook for when a config profile, app push, or CA policy goes sideways.