A Vulnerability in Ivanti Endpoint Manager Mobile Could Allow for Unauthorized Access to API Paths

Read Time:27 Second

A vulnerability has been discovered in Ivanti Endpoint Manager Mobile which could allow for unauthorized access to specific API paths. Ivanti Endpoint Manager Mobile is a mobile management software engine that enables IT to set policies for mobile devices, applications and content. If successfully exploited, an attacker could gain unauthorized access to the database, potentially accessing users’ personally identifiable information such as names and phone numbers. Additionally, the attacker can potentially make configuration changes to the server, including creating an administrative account that can make further changes to a vulnerable system.

Scammers Exploit Microsoft 365 to Target PayPal Users

Casio Admits Security Failings as Attackers Leak Employee and Customer Data

New Mirai Botnet Exploits Zero-Days in Routers and Smart Devices

Fake Government Officials Use Remote Access Tools for Card Fraud

Google’s Willow Quantum Chip and Its Potential Threat to Current Encryption Standards

A Day in the Life of a Prolific Voice Phishing Crew

The AI Fix #32: Agentic AI, killer robot fridges, and the robosexual revolution

New Research Highlights Vulnerabilities in MLOps Platforms

Moxa Urges Immediate Updates for Security Vulnerabilities

A Vulnerability in Ivanti Endpoint Manager Mobile Could Allow for Unauthorized Access to API Paths

mingw-python-jinja2-3.1.5-1.fc40

mingw-python-jinja2-3.1.5-1.fc41

seamonkey-2.53.20-2.el8

seamonkey-2.53.20-2.fc40

seamonkey-2.53.20-2.fc41

USN-7190-1: Tinyproxy vulnerability