August 1, 2023

Ivanti EPMM Vulnerabilities

August 1, 2023

What we know so far

The joint Cybersecurity Advisory (CSA) by CISA and NCSC-NO addresses the active exploitation of CVE-2023-35078 and CVE-2023-35081, emphasizing the threat posed by Advanced Persistent Threat (APT) actors. Ivanti has released patches for both vulnerabilities, but it was observed that the threats could be chained together for even more significant impact. The vulnerabilities affect Ivanti Endpoint Manager Mobile (EPMM), allowing unauthorized access to personally identifiable information and granting the ability to make configuration changes on compromised systems. As Mobile Device Management (MDM) systems are attractive targets for APT actors, CISA and NCSC-NO express concern about potential widespread exploitation in government and private sector networks. 

Arrow Right

Schedule a test

Subscribe to advisory alerts

Be immediately notified of new advisories and associated security tests

More advisories