CVE-2023-38035

CRITICAL9.8

CISA KEVRansomwarePublic PoCHigh EPSS

Description

A security vulnerability in MICS Admin Portal in Ivanti MobileIron Sentry versions 9.18.0 and below, which may allow an attacker to bypass authentication controls on the administrative interface due to an insufficiently restrictive Apache HTTPD configuration.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected products

Ivanti / MobileIron Sentry9.18.0 and below – 9.18.0 and below

Exploits & PoCs

nucleiIvanti Sentry - Authentication Bypassby DhiyaneshDk,iamnoooob,rootxharsh

References

MISChttps://forums.ivanti.com/s/article/CVE-2023-38035-API-Authentication-Bypass-on-Sentry-Administrator-Interface
EXPLOIThttp://packetstormsecurity.com/files/174643/Ivanti-Sentry-Authentication-Bypass-Remote-Code-Execution.html