Skip to main content

Public advisory of scammers impersonating CSA and the SPF

Stay vigilant. Read the public advisory

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. Active Exploitation of High-Severity Vulnerability in Ivanti Endpoint Manager Mobile (EPMM)
Alerts

Active Exploitation of High-Severity Vulnerability in Ivanti Endpoint Manager Mobile (EPMM)

31 July 2023

Ivanti has released security updates to address a high-severity vulnerability (CVE-2023-35081) in their Endpoint Manager Mobile (EPMM) products. The vulnerability is reportedly being actively exploited.

Successful exploitation of the path traversal vulnerability could allow an attacker with administrator privileges to write arbitrary files onto the EPMM server.

The vulnerability affects Ivanti EPMM version 11.8 and later versions. Older versions of Ivanti EPMM prior to 11.8 that have reached end-of-life (EOL) are also affected by the aforementioned vulnerability.

Users and administrators of affected products are advised to upgrade to the latest versions immediately.

More information is available here:

https://forums.ivanti.com/s/article/CVE-2023-35081-Arbitrary-File-Write?language=en_US

https://www.bleepingcomputer.com/news/security/ivanti-patches-new-zero-day-exploited-in-norwegian-govt-attacks/

https://www.cisa.gov/news-events/alerts/2023/07/28/ivanti-releases-security-updates-epmm-address-cve-2023-35081

Back to top