Carding
Professional
- Messages
- 2,870
- Reaction score
- 2,511
- Points
- 113
CISA encourages all EPMM customers to install the latest security patches.
Ivanti, a large IT development company, has identified a new vulnerability in its mobile device management software that is being tracked under the identifier CVE-2023-35081. According to the published warning, this vulnerability differs from the one previously used by hackers CVE-2023-35078 to break into a dozen Norwegian government agencies, which we reported last week.
"The vulnerability was discovered in Ivanti Endpoint Manager Mobile (EPMM), formerly known as MobileIron Core. It affects all supported versions-releases 11.10, 11.9 and 11.8. Older versions are also at risk. This vulnerability differs from CVE-2023-35078, published on July 23, " the company said in an official statement.
CISA, the US cybersecurity agency, also issued its own warning, urging Ivanti customers to immediately install the latest patches due to the active exploitation of both vulnerabilities by attackers. Previously, CISA has already added CVE-2023-35078 to its catalog of known vulnerabilities after Norwegian authorities confirmed that it was used in attacks on a number of government agencies.
"This vulnerability was unique and was first discovered in Norway. Premature disclosure of information about her may have contributed to abuse in other countries," said Sophie Nyström, director of the Norwegian National Security Agency.
EPMM is widely used by governments in many countries, including the United States. A search on the Shodan platform revealed dozens of potentially vulnerable government agencies in the United States and Europe.
According to CISA, exploiting the vulnerability allows access to personal data of victims, such as names, phone numbers and other details of mobile devices. Attackers can also make changes to the software configuration, including creating administrative accounts.
Ivanti, a large IT development company, has identified a new vulnerability in its mobile device management software that is being tracked under the identifier CVE-2023-35081. According to the published warning, this vulnerability differs from the one previously used by hackers CVE-2023-35078 to break into a dozen Norwegian government agencies, which we reported last week.
"The vulnerability was discovered in Ivanti Endpoint Manager Mobile (EPMM), formerly known as MobileIron Core. It affects all supported versions-releases 11.10, 11.9 and 11.8. Older versions are also at risk. This vulnerability differs from CVE-2023-35078, published on July 23, " the company said in an official statement.
CISA, the US cybersecurity agency, also issued its own warning, urging Ivanti customers to immediately install the latest patches due to the active exploitation of both vulnerabilities by attackers. Previously, CISA has already added CVE-2023-35078 to its catalog of known vulnerabilities after Norwegian authorities confirmed that it was used in attacks on a number of government agencies.
"This vulnerability was unique and was first discovered in Norway. Premature disclosure of information about her may have contributed to abuse in other countries," said Sophie Nyström, director of the Norwegian National Security Agency.
EPMM is widely used by governments in many countries, including the United States. A search on the Shodan platform revealed dozens of potentially vulnerable government agencies in the United States and Europe.
According to CISA, exploiting the vulnerability allows access to personal data of victims, such as names, phone numbers and other details of mobile devices. Attackers can also make changes to the software configuration, including creating administrative accounts.
