COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2023-35078

CVE-2023-35078

Severity
critical · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2023-07-25
Reference
https://nvd.nist.gov/vuln/detail/CVE-2023-35078
⌖ exploited in the wild shame 80/100 ransomwareexploited-in-wild

Ivanti Endpoint Manager Mobile (EPMM, previously branded MobileIron Core) contains an authentication bypass vulnerability that allows unauthenticated access to specific API paths. An attacker with access to these API paths can access personally identifiable information (PII) such

Players implicated

Ivanti · vendorEndpoint Manager Mobile (EPMM) · product

Description

Ivanti Endpoint Manager Mobile (EPMM, previously branded MobileIron Core) contains an authentication bypass vulnerability that allows unauthenticated access to specific API paths. An attacker with access to these API paths can access personally identifiable information (PII) such as names, phone numbers, and other mobile device details for users on a vulnerable system. An attacker can also make other configuration changes including installing software and modifying security profiles on registered devices.

Affected FedRAMP products 2 in the catalog

ProductProviderStatusMatch
Ivanti Neurons for ITSM (Formerly Service Manager) Ivanti Authorized vendor-exact · 0.90
Ivanti Neurons for MDM (Formerly MobileIron) Ivanti Authorized vendor-exact · 0.90