Lucene search

PRIOn knowledge basePRION:CVE-2023-35078

HistoryJul 25, 2023 - 7:15 a.m.

Authentication flaw

2023-07-2507:15:00

PRIOn knowledge base

www.prio-n.com

authentication bypass

ivanti epmm

unauthorized access

vulnerability

nvd

8.3 High

AI Score

Confidence

High

0.968 High

EPSS

Percentile

99.7%

JSON

An authentication bypass vulnerability in Ivanti EPMM allows unauthorized users to access restricted functionality or resources of the application without proper authentication.

CPENameOperatorVersion
endpoint_manager_mobilele11.10

CPE	Name	Operator	Version
	endpoint_manager_mobile	le	11.10

References

forums.ivanti.com/s/article/CVE-2023-35078-Remote-unauthenticated-API-access-vulnerability

forums.ivanti.com/s/article/KB-Remote-unauthenticated-API-access-vulnerability-CVE-2023-35078

www.cisa.gov/news-events/alerts/2023/07/24/ivanti-releases-security-updates-endpoint-manager-mobile-epmm-cve-2023-35078

www.ivanti.com/blog/cve-2023-35078-new-ivanti-epmm-vulnerability