Vulnerability Details CVE-2023-35082
An authentication bypass vulnerability in Ivanti EPMM 11.10 and older, allows unauthorized users to access restricted functionality or resources of the application without proper authentication. This vulnerability is unique to CVE-2023-35078 announced earlier.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.945
EPSS Ranking 100.0%
CVSS Severity
CVSS v3 Score 10.0
Proposed Action
Ivanti Endpoint Manager Mobile (EPMM) and MobileIron Core contain an authentication bypass vulnerability that allows unauthorized users to access restricted functionality or resources of the application.
Ransomware Campaign
Known
References
Products affected by CVE-2023-35082
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:-
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.10.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.10.0.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.10.0.1
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.10.0.2
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.10.0.3
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.10.0.4
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.4.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.4.0.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.4.1.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.5.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.5.0.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.6.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.6.0.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.6.0.01
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.6.0.1
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.7.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.7.0.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.8.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.8.0.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.8.1.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.8.1.1
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.8.1.2
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.9.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.9.0.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.9.0.1
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.9.1.0
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.9.1.1
-
cpe:2.3:a:ivanti:endpoint_manager_mobile:11.9.1.2