A Vulnerability in Ivanti Endpoint Manager Mobile Could Allow for Unauthorized Access to API Paths

Read Time:27 Second

A vulnerability has been discovered in Ivanti Endpoint Manager Mobile which could allow for unauthorized access to specific API paths. Ivanti Endpoint Manager Mobile is a mobile management software engine that enables IT to set policies for mobile devices, applications and content. If successfully exploited, an attacker could gain unauthorized access to the database, potentially accessing users’ personally identifiable information such as names and phone numbers. Additionally, the attacker can potentially make configuration changes to the server, including creating an administrative account that can make further changes to a vulnerable system.

US Treasury Department Sanctions Chinese Company Over Cyberattacks

Phishing Click Rates Triple in 2024

UK Government to Ban Creation of Explicit Deepfakes

CISA Claims Treasury Breach Did Not Impact Other Agencies

Supply Chain Attack Targets Key Ethereum Development Tools

New PhishWP Plugin Enables Sophisticated Payment Page Scams

Chinese Hackers Double Cyber-Attacks on Taiwan

Privacy of Photos.app’s Enhanced Visual Search

New Infostealer Campaign Uses Discord Videogame Lure

A Vulnerability in Ivanti Endpoint Manager Mobile Could Allow for Unauthorized Access to API Paths

firefox-134.0-1.fc41

firefox-134.0-1.fc40

seamonkey-2.53.20-1.el8

seamonkey-2.53.20-1.fc40

seamonkey-2.53.20-1.fc41

USN-7187-1: Linux kernel (OEM) vulnerabilities