CVE-2023-39337

Published: Nov 14, 2023

Modified: Aug 29, 2024

PUBLISHED

Description

A security vulnerability in EPMM Versions 11.10, 11.9 and 11.8 older allows a threat actor with knowledge of an enrolled device identifier to access and extract sensitive information, including device and environment configuration details, as well as secrets. This vulnerability poses a serious security risk, potentially exposing confidential data and system integrity.

Vendor	Product	Versions
Ivanti	EPMM	affected `11.10.0.0 - <= 11.10.0.0` affected `11.9.0.0 - <= 11.9.0.0` affected `11.8.0.0 - <= 11.8.0.0`

References

https://forums.ivanti.com/s/article/CVE-2023-39337?language=en_US

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-39337

Description

Affected Products

References