Ivanti fixes 10.0 vulnerability in Endpoint Manager Mobile
The CISA - Cybersecurity and Infrastructure Security Agency - warns of the critical 10.0 vulnerability in Ivantis Endpoint Manager Mobile (EPMM) and recommends the immediate update. Otherwise unauthenticated access to API paths is possible. The update is ready. The American CISA reports that the critical vulnerability with a maximum CVSS value of 10.0 in Ivantis for Endpoint Manager Mobile (EPMM) with CVE-2023-35078 should be closed immediately. Ivanti provides a corresponding update. The discovered vulnerability allows unauthenticated access to certain API paths. An attacker with access to these…