CVE-2024-34788
EUVD-2024-3505407.08.2024, 04:17
An improper authentication vulnerability in web component of EPMM prior to 12.1.0.1 allows a remote malicious user to access potentially sensitive informationEnginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| ivanti | endpoint_manager_mobile | 𝑥 < 12.1.0.1 |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| ivanti | endpoint_manager_mobile | 𝑥 < 12.1.0.1 | ADP |
Common Weakness Enumeration
- CWE-287 - Improper AuthenticationWhen an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct.
- CWE-200 - Exposure of Sensitive Information to an Unauthorized ActorThe product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.