all InfoSec news
CVE-2023-35078: Ivanti Endpoint Manager Mobile (EPMM) / MobileIron Core Unauthenticated API Access Vulnerability
Cyber Exposure Alerts www.tenable.com
Critical vulnerability in a popular mobile device management solution from Ivanti has been exploited in the wild in limited attacks
Background
On July 24, a post from Heise Online (English translation) detailed a recently patched zero-day vulnerability in Ivanti Endpoint Manager Mobile (EPMM), a mobile management software that can be used for mobile device management (MDM), mobile application management (MAM) and mobile content management (MCM). It was formerly known as MobileIron Core prior to its acquisition by Ivanti …
access api attacks critical critical vulnerability cve device device management endpoint exploited ivanti july management manager mobile mobile device mobile device management mobileiron popular software solution translation vulnerability zero-day zero-day vulnerability