← back
CVE-2023-35078

CVE-2023-35078

CVSS 10 CRITICALEPSS 100.0%● KEVCWE-287
Vexday Risk Score
100Fix now
SSVC decision (CISA)
Act
Exploitation + impact → act immediately
CVSS 10EPSS 100.0%KEV simPoC públicaNuclei simMetasploit Patch
Lifecycle
25 Jul 2023Active exploitation (CISA KEV)
25 Jul 2023Published on NVD
29 Jul 2023Public PoC
Recommendation: Patch as soon as possible — active exploitation confirmed.
In short

A flaw in Ivanti EPMM allows attackers to skip authentication and access protected features without providing credentials. This is critical because an unauthenticated attacker can take full control of the system.

Technical detail

CWE-287 authentication bypass in Ivanti EPMM permits unauthenticated access to restricted application functionality through insufficient credential validation. The vulnerability requires no special preconditions and results in complete unauthorized access to protected resources and system controls.

Summary generated and translated by AI from the official description.
An authentication bypass vulnerability in Ivanti EPMM allows unauthorized users to access restricted functionality or resources of the application without proper authentication.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Affected products
Ivanti · Endpoint Manager Mobile
public PoCs found7
githubgithub.com/vaishnochaitanya/CVE-2023-35078-Exploit-POC117githubgithub.com/lager1/CVE-2023-350785githubgithub.com/raytheon0x21/CVE-2023-350785githubgithub.com/0nsec/CVE-2023-350781githubgithub.com/emanueldosreis/nmap-CVE-2023-35078-Exploit1githubgithub.com/synfinner/CVE-2023-350780githubgithub.com/Blue-number/CVE-2023-350780
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://forums.ivanti.com/s/article/CVE-2023-35078-Remote-unauthenticated-API-access-vulnerabilityhttps://forums.ivanti.com/s/article/KB-Remote-unauthenticated-API-access-vulnerability-CVE-2023-35078https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-35078https://www.cisa.gov/news-events/alerts/2023/07/24/ivanti-releases-security-updates-endpoint-manager-mobile-epmm-cve-2023-35078https://www.ivanti.com/blog/cve-2023-35078-new-ivanti-epmm-vulnerability