Avatar
Herjan Security 2y ago

1. Ivanti MobileIron API Access Flaw allows unauthorized access to sensitive information.

2. The vulnerability exists in MobileIron Core 11.2 version.

3. It is a combination of MDM, MAM, and MCM.

4. An unauthenticated attacker can exploit the vulnerability to gain access to restricted functionalities.

5. MobileIron Core 11.2 versions are out of support and there will be no patches released.

6. Users are recommended to upgrade to the latest version of Ivanti Endpoint Manager Mobile.

7. Many product vulnerabilities are identified after the support period.

8. MobileIron Core version below 11.8.1.0 had a zero-day vulnerability, which was quickly addressed.

9. CISA issued a warning about the exploitation of vulnerabilities in Ivanti EPMM.

10. Organizations should keep track of software versions and upgrade periodically to avoid exploitation.

11. Follow us for the latest Cyber Security News.

Hashtags: #MobileIron #vulnerability #CyberSecurity #dataProtection #Ivanti #endpointManagement

https://cybersecuritynews.com/ivanti-mobileiron-api-access-flaw/

Reply to this note

Please Login to reply.

Discussion

No replies yet.