CVE-2023-35078
CVE-2023-35078
In short
A flaw in Ivanti EPMM allows attackers to skip authentication and access protected features without providing credentials. This is critical because an unauthenticated attacker can take full control of the system.
Technical detail
CWE-287 authentication bypass in Ivanti EPMM permits unauthenticated access to restricted application functionality through insufficient credential validation. The vulnerability requires no special preconditions and results in complete unauthorized access to protected resources and system controls.
Summary generated and translated by AI from the official description.
An authentication bypass vulnerability in Ivanti EPMM allows unauthorized users to access restricted functionality or resources of the application without proper authentication.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Affected products
Ivanti · Endpoint Manager Mobilepublic PoCs found — 7
githubgithub.com/vaishnochaitanya/CVE-2023-35078-Exploit-POC★ 117githubgithub.com/lager1/CVE-2023-35078★ 5githubgithub.com/raytheon0x21/CVE-2023-35078★ 5githubgithub.com/0nsec/CVE-2023-35078★ 1githubgithub.com/emanueldosreis/nmap-CVE-2023-35078-Exploit★ 1githubgithub.com/synfinner/CVE-2023-35078★ 0githubgithub.com/Blue-number/CVE-2023-35078★ 0⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://forums.ivanti.com/s/article/CVE-2023-35078-Remote-unauthenticated-API-access-vulnerabilityhttps://forums.ivanti.com/s/article/KB-Remote-unauthenticated-API-access-vulnerability-CVE-2023-35078https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-35078https://www.cisa.gov/news-events/alerts/2023/07/24/ivanti-releases-security-updates-endpoint-manager-mobile-epmm-cve-2023-35078https://www.ivanti.com/blog/cve-2023-35078-new-ivanti-epmm-vulnerability