this post was submitted on 25 Jul 2023
4 points (100.0% liked)

TeCHnology

519 readers
1 users here now

Technology discussion for Switzerland. This community shall discuss various topics of technology in and around Switzerland.

founded 2 years ago
MODERATORS
_Frog@feddit.ch
4
Ivanti patches MobileIron zero-day bug exploited in attacks (www.bleepingcomputer.com)
submitted 2 years ago by _Frog@feddit.ch to c/technology@feddit.ch
0 comments fedilink hide all child comments
 

US-based IT software company Ivanti has patched an actively exploited zero-day authentication bypass vulnerability impacting its Endpoint Manager Mobile (EPMM) mobile device management software (formerly MobileIron Core).

Ivanti released security patches for the remote unauthenticated API access vulnerability tracked as CVE-2023-35078 on Sunday.

The patches can be installed by upgrading to EPMM 11.8.1.1, 11.9.1.1, and 11.10.0.2. They also target unsupported and end-of-life software versions lower than 11.8.1.0 (e.g., 11.7.0.0, 11.5.0.0)

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here