CVE-2023-35078

Summary

An authentication bypass vulnerability in Ivanti EPMM allows unauthorized users to access restricted functionality or resources of the application without proper authentication.

Affected Software

VendorProductVersion RangeStatus
IvantiEndpoint Manager Mobile11.10 <= 11.10unaffected
IvantiEndpoint Manager Mobile11.9 <= 11.9unaffected
IvantiEndpoint Manager Mobile11.8 <= 11.8unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: yes
    • Technical Impact: total

Additional References

CVE Program Container

Additional References

References