Vulnerability detail

Enriched intelligence for a single CVE

10.0

CVSS
Critical

CVE-2023-35082

PUBLISHED

An authentication bypass vulnerability in Ivanti EPMM 11.10 and older, allows unauthorized users to access restricted functionality or resources of...

Exploited in the wild Used in malware Remote Low complexity No user interaction

Vendor: Ivanti
Product: EPMM
Published: Aug 15, 2023
EPSS: —

Description

An authentication bypass vulnerability in Ivanti EPMM 11.10 and older, allows unauthorized users to access restricted functionality or resources of the application without proper authentication. This vulnerability is unique to CVE-2023-35078 announced earlier.

cisa malware ransomware nuclei_scanner edge

CVSS scores

CVSS v3.0 10.0 Critical

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Exploitation status

Exploited in the wild

Recorded 2024-01-18 00:00:00 UTC · Source

Used in malware

Recorded 2024-01-18 00:00:00 UTC · Source

SSVC decision points

Exploitation: active
Automatable: Yes
Technical impact: total

References

https://forums.ivanti.com/s/article/CVE-2023-35082-Remote-Unauthenticated-API-Access-Vulnerability-in-MobileIron-Core-11-2-and-older?language=en_US

Known exploited vulnerability sources

Catalogues that list this CVE as a known exploited vulnerability.

Source	Added
CISA	Jan 18, 2024

Scanner integrations

Scanner	Reference	Detected
Nuclei	https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2023/CVE-2023-35082.yaml	Apr 25, 2025

Potential proof of concepts

These PoCs are unverified and could contain malware. Use at your own risk.

Chocapikk/CVE-2023-35082

github · Created 2023-08-04 16:25:24 UTC · 3 stars

Remote Unauthenticated API Access Vulnerability in MobileIron Core 11.2 and older

Timeline

CVE ID Reserved

June 13, 2023
CVE Published to Public

August 15, 2023
Exploit Used in Malware

January 18, 2024
Added to KEVIntel

January 18, 2024
Detected by Nuclei

April 25, 2025