CVE-2023-35081Ivanti Endpoint Manager Mobile (EPMM) Path Traversal Vulnerability

PUBLISHEDvulnerability record
2023-07-31 · last modified June 21, 2025

Metadata

CVE ID:
CVE-2023-35081
项目:
Ivanti
产品:
Endpoint Manager Mobile (EPMM)
添加日期:
2023-07-31
到期日:
2023-08-21
最后更新:
June 21, 2025

漏洞名称

Ivanti Endpoint Manager Mobile (EPMM) Path Traversal Vulnerability

描述

Ivanti Endpoint Manager Mobile (EPMM) contains a path traversal vulnerability that enables an authenticated administrator to perform malicious file writes to the EPMM server. This vulnerability can be used in conjunction with CVE-2023-35078 to bypass authentication and ACLs restrictions (if applicable).

已知用于勒索软件活动吗?

勒索软件状态:
Unknown

采集行动

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

其他说明

相关 CWE