Vulnerability in Ivanti Endpoint Manager Mobile (EPMM) - 20230725001¶
Overview¶
The WA SOC has observed a vulnerability in Ivanti EPMM impacting multiple versions of the product.
What is the vulnerability?¶
This vulnerability enables an unauthorised, remote (internet-facing) actor to potentially access users’ personally identifiable information and make limited changes to the server.
What is vulnerable?¶
The vulnerability affects the following products:
- Ivanti EPMM Versions: 11.10, 11.9, 11.8 and older.
Recommendation¶
The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframe of one month... (refer Patch Management):