CVE-2023-39337

CVSS 3.1 Score 9.1 of 10 (high)

Details

Published Nov 15, 2023
Updated: Nov 22, 2023

Summary

CVE-2023-39337 is a newly identified vulnerability affecting EPMM Versions 11.10, 11.9, and 11.8. This issue grants unauthorized access to a threat actor who knows an enrolled device identifier. The breach enables the attacker to extract sensitive information, such as device and environment configuration details and secrets, posing a serious risk to confidential data and system integrity.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Ivanti Endpoint Manager Mobile

Affected Vendors

  • MobileIron