CVSS: 6.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-38344
https://notcve.org/view.php?id=CVE-2023-38344
21 Sep 2023 — An issue was discovered in Ivanti Endpoint Manager before 2022 SU4. A file disclosure vulnerability exists in the GetFileContents SOAP action exposed via /landesk/managementsuite/core/core.secure/OsdScript.asmx. The application does not sufficiently restrict user-supplied paths, allowing for an authenticated attacker to read arbitrary files from a remote system, including the private key used to authenticate to agents for remote access. Se descubrió un problema en Ivanti Endpoint Manager antes de 2022 SU4. ... • https://gist.github.com/bhyahoo/76533e91840200a1d9f3fb1eb87eb0f1 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 10.0EPSS: 94%CPEs: 1EXPL: 1CVE-2023-35082 – Ivanti Endpoint Manager Mobile (EPMM) and MobileIron Core Authentication Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2023-35082
15 Aug 2023 — An authentication bypass vulnerability in Ivanti EPMM 11.10 and older, allows unauthorized users to access restricted functionality or resources of the application without proper authentication. This vulnerability is unique to CVE-2023-35078 announced earlier. Una vulnerabilidad de omisión de autenticación en Ivanti EPMM 11.10 y versiones anteriores permite a usuarios no autorizados acceder a funciones o recursos restringidos de la aplicación sin la autenticación adecuada. Esta vulnerabilidad es exclusiva d... • https://github.com/Chocapikk/CVE-2023-35082 • CWE-287: Improper Authentication •
CVSS: 9.0EPSS: 93%CPEs: 3EXPL: 0CVE-2023-35081 – Ivanti Endpoint Manager Mobile (EPMM) Path Traversal Vulnerability
https://notcve.org/view.php?id=CVE-2023-35081
03 Aug 2023 — A path traversal vulnerability in Ivanti EPMM versions (11.10.x < 11.10.0.3, 11.9.x < 11.9.1.2 and 11.8.x < 11.8.1.2) allows an authenticated administrator to write arbitrary files onto the appliance. Ivanti Endpoint Manager Mobile (EPMM) contains a path traversal vulnerability that enables an authenticated administrator to perform malicious file writes to the EPMM server. This vulnerability can be used in conjunction with CVE-2023-35078 to bypass authentication and ACLs restrictions (if applicable). • https://forums.ivanti.com/s/article/CVE-2023-35081-Arbitrary-File-Write?language=en_US • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 10.0EPSS: 94%CPEs: 1EXPL: 7CVE-2023-35078 – Ivanti Endpoint Manager Mobile Authentication Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2023-35078
25 Jul 2023 — An authentication bypass vulnerability in Ivanti EPMM allows unauthorized users to access restricted functionality or resources of the application without proper authentication. Ivanti Endpoint Manager Mobile (EPMM, previously branded MobileIron Core) contains an authentication bypass vulnerability that allows unauthenticated access to specific API paths. An attacker with access to these API paths can access personally identifiable information (PII) such as names, phone numbers, and other mobile device deta... • https://github.com/vchan-in/CVE-2023-35078-Exploit-POC • CWE-287: Improper Authentication •
CVSS: 8.1EPSS: 1%CPEs: 2EXPL: 0CVE-2023-35077
https://notcve.org/view.php?id=CVE-2023-35077
21 Jul 2023 — An out-of-bounds write vulnerability on windows operating systems causes the Ivanti AntiVirus Product to crash. Update to Ivanti AV Product version 7.9.1.285 or above. • https://forums.ivanti.com/s/article/SA-2023-07-19-CVE-2023-35077 • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 2%CPEs: 5EXPL: 0CVE-2023-28323 – Ivanti Endpoint Manager ProcessEPMAuthToken Deserialization of Untrusted Data Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-28323
30 Jun 2023 — A deserialization of untrusted data exists in EPM 2022 Su3 and all prior versions that allows an unauthenticated user to elevate rights. This exploit could potentially be used in conjunction with other OS (Operating System) vulnerabilities to escalate privileges on the machine or be used as a stepping stone to get to other network attached machines. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Endpoint Manager. Authentication is not required to exp... • https://forums.ivanti.com/s/article/SA-2023-06-20-CVE-2023-28323 • CWE-502: Deserialization of Untrusted Data •
CVSS: 10.0EPSS: 78%CPEs: 1EXPL: 2CVE-2023-28324 – Ivanti EPM Agent Portal Command Execution
https://notcve.org/view.php?id=CVE-2023-28324
30 Jun 2023 — A improper input validation vulnerability exists in Ivanti Endpoint Manager 2022 and below that could allow privilege escalation or remote code execution. • https://packetstorm.news/files/id/182719 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 1%CPEs: 4EXPL: 0CVE-2022-27773
https://notcve.org/view.php?id=CVE-2022-27773
05 Dec 2022 — A privilege escalation vulnerability is identified in Ivanti EPM (LANDesk Management Suite) that allows a user to execute commands with elevated privileges. Se identifica una vulnerabilidad de escalada de privilegios en Ivanti EPM (LANDesk Management Suite) que permite a un usuario ejecutar comandos con privilegios elevados. • https://forums.ivanti.com/s/article/Security-Advisory-for-Ivanti-Endpoint-Manager-Client-CVE-2022-27773?language=en_US •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-35259
https://notcve.org/view.php?id=CVE-2022-35259
05 Dec 2022 — XML Injection with Endpoint Manager 2022. 3 and below causing a download of a malicious file to run and possibly execute to gain unauthorized privileges. La inyección XML con Endpoint Manager 2022. 3 y versiones anteriores provoca que se ejecute la descarga de un archivo malicioso y posiblemente se ejecute para obtener privilegios no autorizados. • https://forums.ivanti.com/s/article/Security-Advisory-for-Ivanti-Endpoint-Manager-Client-CVE-2022-35259?language=en_US • CWE-91: XML Injection (aka Blind XPath Injection) •
CVSS: 6.7EPSS: 0%CPEs: 4EXPL: 0CVE-2022-30121
https://notcve.org/view.php?id=CVE-2022-30121
23 Sep 2022 — The “LANDesk(R) Management Agent” service exposes a socket and once connected, it is possible to launch commands only for signed executables. This is a security bug that allows a limited user to get escalated admin privileges on their system. El servicio "LANDesk(R) Management Agent" expone un socket y una vez conectado, es posible lanzar comandos sólo para los ejecutables firmados. Este es un bug de seguridad que permite a un usuario limitado conseguir privilegios de administrador escalados en su sistema. • https://forums.ivanti.com/s/article/Security-Advisory-for-Ivanti-Endpoint-Manager-Client-CVE-2022-30121?language=en_US •