HTTP: Ivanti MobileIron Core Authentication Bypass
This signature detects attempts to exploit a known vulnerability against Ivanti MobileIron Core. A successful attack can lead to security bypass.
Extended Description
An authentication bypass vulnerability in Ivanti EPMM 11.10 and older, allows unauthorized users to access restricted functionality or resources of the application without proper authentication. This vulnerability is unique to CVE-2023-35078 announced earlier.
Affected Products
Ivanti endpoint_manager_mobile
References
CVE: CVE-2023-35078
Short Name
HTTP:CTS:MOBILEIRON-AUTH-BYPASS
Severity
Critical
Recommended
True
Recommended Action
None
Category
HTTP
Keywords
Authentication Bypass CVE-2023-35078 CVE-2023-35082 Core Ivanti MobileIron
Release Date
09/15/2023
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3771
False Positive
Unknown
Vendors
Ivanti