48 matches found
EUVD-2021-26538
Malware in sbrugna...
EUVD-2020-7499
Malware in sbrugna...
EUVD-2021-26851
Malware in sbrugna...
CVE-2020-15507
An arbitrary file reading vulnerability in MobileIron Core versions 10.3.0.3 and earlier, 10.4.0.0, 10.4.0.1, 10.4.0.2, 10.4.0.3, 10.5.1.0, 10.5.2.0 and 10.6.0.0 that allows remote attackers to read files on the system via unspecified vectors...
CVE-2020-15506
An authentication bypass vulnerability in MobileIron Core & Connector versions 10.3.0.3 and earlier, 10.4.0.0, 10.4.0.1, 10.4.0.2, 10.4.0.3, 10.5.1.0, 10.5.2.0 and 10.6.0.0 that allows remote attackers to bypass authentication mechanisms via unspecified vectors...
Exploit for Improper Access Control in Ivanti Endpoint_Manager_Mobile
CVE-2024-22026 Exploit POC for CVE-2024-22026 affecting Ivan...
U.S. Cybersecurity Agency Warns of Actively Exploited Ivanti EPMM Vulnerability
The U.S. Cybersecurity and Infrastructure Security Agency CISA on Thursday added a now-patched critical flaw impacting Ivanti Endpoint Manager Mobile EPMM and MobileIron Core to its Known Exploited Vulnerabilities KEV catalog, stating it's being actively exploited in the wild. The vulnerability i...
Ivanti Endpoint Manager Mobile < 11.10.0.4 / 11.11.x < 11.11.0.2 Multiple Vulnerabilities
The version of Ivanti Endpoint Manager Mobile, formerly MobileIron Core, running on the remote host is 11.10.0.4, or 11.11.x 11.11.0.2. It is, therefore, affected by multiple vulnerabilities. - A security vulnerability has been identified allowing an unauthenticated threat actor to impersonate an...
VulnCheck KEV: CVE-2023-35082
Ivanti Endpoint Manager Mobile EPMM and MobileIron Core contain an authentication bypass vulnerability that allows unauthorized users to access restricted functionality or resources of the application...
CVE-2023-35082
An authentication bypass vulnerability in Ivanti EPMM 11.10 and older, allows unauthorized users to access restricted functionality or resources of the application without proper authentication. This vulnerability is unique to CVE-2023-35078 announced earlier. Recent assessments: sfewer-r7 at...
The vulnerability of the Ivanti Endpoint Manager Mobile (EPMM) application for managing the lifecycle of mobile devices and mobile applications (formerly known as MobileIron Core) lies in the improper restriction of the path name to the restricted directory. This allows a malicious user to write arbitrary files.
The vulnerability of the Ivanti Endpoint Manager Mobile EPMM application for managing the lifecycle of mobile devices and mobile applications formerly known as MobileIron Core is related to an incorrect restriction on the path name to the restricted directory. Exploiting this vulnerability could...
Vulnerability fixed in Ivanti Endpoint manager Mobile (EPMM, formerly MobileIron Core).
A vulnerability has been fixed in Ivanti Endpoint Manager formerly MobileIron Core. An unauthenticated malicious person could exploit the vulnerability to access arbitrary files thus gaining access to sensitive data and potentially execute arbitrary code on the vulnerable system. This vulnerabili...
Researchers Discover Bypass for Recently Patched Critical Ivanti EPMM Vulnerability
Cybersecurity researchers have discovered a bypass for a recently fixed actively exploited vulnerability in some versions of Ivanti Endpoint Manager Mobile EPMM, prompting Ivanti to urge users to update to the latest version of the software. Tracked as CVE-2023-35082 CVSS score: 10.0 and discover...
CVE-2023-35082 - MobileIron Core Unauthenticated API Access Vulnerability
When this blog was originally published on August 2, it said that CVE-2023-35082 only affected MobileIron Core 11.2 and earlier, which are unsupported. On August 7, Ivanti published an updated advisory noting that since originally disclosing CVE-2023-35082, they have continued their investigation...
CVE-2023-35082 – Remote Unauthenticated API Access Vulnerability
DESCRIPTION: Update: Since originally reporting CVE-2023-35082 on 2 August 2023 at 10:00 MDT, Ivanti has continued its investigation and has found that this vulnerability impacts all versions of Ivanti Endpoint Manager Mobile EPMM 11.10, 11.9 and 11.8 and MobileIron Core 11.7 and below. The risk ...
Ivanti Endpoint Manager Mobile < 11.8.1.2 / 11.9.x < 11.9.1.2 / 11.10.x < 11.10.0.3 Arbitrary File Write (CVE-2023-35081)
The version of Ivanti Endpoint Manager Mobile, formerly MobileIron Core, running on the remote host is 11.8.1.2, 11.9.x 11.9.1.2, or 11.10.x 11.10.0.3. It is, therefore, affected by an authenticated arbitrary file write vulnerability. Note that Nessus has not tested for these issues but has inste...
CVE-2023-35078
CVE-2023-35078 is an authentication-bypass vulnerability affecting Ivanti Endpoint Manager Mobile (EPMM) / MobileIron Core. Public exploit/tooling exists targeting the API path /mifs/aad/api/v2/authorized/users to access restricted data without authentication. Affected versions include Ivanti/Mob...
VulnCheck KEV: CVE-2023-35078
Ivanti Endpoint Manager Mobile EPMM, previously branded MobileIron Core contains an authentication bypass vulnerability that allows unauthenticated access to specific API paths. An attacker with access to these API paths can access personally identifiable information PII such as names,...
MobileIron Core Unauthenticated JNDI Injection RCE (via Log4Shell)
MobileIron Core is affected by the Log4Shell vulnerability whereby a JNDI string sent to the server will cause it to connect to the attacker and deserialize a malicious Java object. This results in OS command execution in the context of the tomcat user. This module will start an LDAP server that...
Metasploit Weekly Wrap-Up
Log4Shell in MobileIron Core Thanks to jbaines-r7 we have yet another Log4Shell exploit. Similar to the other Log4Shell exploit modules, the exploit works by sending a JNDI string that once received by the server will be deserialized, resulting in unauthenticated remote code execution as the tomc...