Advisory No: TZCERT/SA/2023/08/11
Date of First Release: 11th August 2023
Ivanti has released security patches to address a critical vulnerability affecting multiple versions of Ivanti End Point Manager Mobile (EPMM). This vulnerability could allow an attacker to obtain sensitive information and take control of an affected system.
Ivanti End Point Manager Mobile (EPMM) formerly known as MobileIron Core affected by a remote unauthenticated API Access vulnerability. The vulnerability allows an authenticated attacker to access restricted functionality or resources of the application without proper authentication.
Successful exploitation of this vulnerability allows an attacker to take control of an affected system.
Ivanti has released security patches for this vulnerability. Users and Administrators are encouraged to apply necessary updates.