CVE-2023-39337

EPSS 1.9%CWE-200

Vexday Risk Score

3Baixo

Decisão SSVC (CISA)

Track

Sem sinal de exploração → monitorar

CVSS —EPSS 1.9%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

14 nov 2023Publicada no NVD

Recomendação: Monitorar — sem sinal de exploração no momento.

A security vulnerability in EPMM Versions 11.10, 11.9 and 11.8 older allows a threat actor with knowledge of an enrolled device identifier to access and extract sensitive information, including device and environment configuration details, as well as secrets. This vulnerability poses a serious security risk, potentially exposing confidential data and system integrity.

Produtos afetados

Ivanti · EPMM

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://forums.ivanti.com/s/article/CVE-2023-39337?language=en_US