CVE-2023-35084

Unsafe Deserialization of User Input could lead to Execution of Unauthorized Operations in Ivanti Endpoint Manager 2022 su3 and all previous versions, which could allow an attacker to execute commands remotely.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://forums.ivanti.com/s/article/SA-2023-08-08-CVE-2023-35084?language=en_US	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:ivanti:endpoint_manager::::::::
	cpe:2.3:a:ivanti:endpoint_manager:2022:-::::::
	cpe:2.3:a:ivanti:endpoint_manager:2022:su1::::::
	cpe:2.3:a:ivanti:endpoint_manager:2022:su2::::::
	cpe:2.3:a:ivanti:endpoint_manager:2022:su3::::::

History

25 Oct 2023, 00:17

Type	Values Removed	Values Added
References	~~(MISC) https://forums.ivanti.com/s/article/SA-2023-08-08-CVE-2023-35084?language=en_US -~~	(MISC) https://forums.ivanti.com/s/article/SA-2023-08-08-CVE-2023-35084?language=en_US - Vendor Advisory
First Time		Ivanti Ivanti endpoint Manager
CWE		CWE-502
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.8
CPE		cpe:2.3:a:ivanti:endpoint_manager:::::::: cpe:2.3:a:ivanti:endpoint_manager:2022:su1:::::: cpe:2.3:a:ivanti:endpoint_manager:2022:su3:::::: cpe:2.3:a:ivanti:endpoint_manager:2022:su2:::::: cpe:2.3:a:ivanti:endpoint_manager:2022:-::::::

18 Oct 2023, 04:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-10-18 04:15

Updated : 2024-02-28 20:33

NVD link : CVE-2023-35084

Mitre link : CVE-2023-35084

CVE.ORG link : CVE-2023-35084

JSON object : View

Products Affected

ivanti

endpoint_manager

CWE

CWE-502

Deserialization of Untrusted Data

{"id": "CVE-2023-35084", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2023-10-18T04:15:11.027", "references": [{"url": "https://forums.ivanti.com/s/article/SA-2023-08-08-CVE-2023-35084?language=en_US", "tags": ["Vendor Advisory"], "source": "support@hackerone.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-502"}]}], "descriptions": [{"lang": "en", "value": "Unsafe Deserialization of User Input could lead to Execution of Unauthorized Operations in Ivanti Endpoint Manager 2022 su3 and all previous versions, which could allow an attacker to execute commands remotely."}, {"lang": "es", "value": "La Deserializaci\u00f3n Insegura de la Entrada del Usuario podr\u00eda provocar la ejecuci\u00f3n de operaciones no autorizadas en Ivanti Endpoint Manager 2022 su3 y todas las versiones anteriores, lo que podr\u00eda permitir a un atacante ejecutar comandos de forma remota."}], "lastModified": "2023-10-25T00:17:27.200", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ivanti:endpoint_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B1F6549B-CF5D-4607-B67D-5489905A1705", "versionEndExcluding": "2022"}, {"criteria": "cpe:2.3:a:ivanti:endpoint_manager:2022:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "46580865-5177-4E55-BDAC-73DA4B472B35"}, {"criteria": "cpe:2.3:a:ivanti:endpoint_manager:2022:su1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E57E12B5-B789-450C-9476-6C4C151E6993"}, {"criteria": "cpe:2.3:a:ivanti:endpoint_manager:2022:su2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E47C65B3-56DD-4D65-8B4B-6AFFE28E94F2"}, {"criteria": "cpe:2.3:a:ivanti:endpoint_manager:2022:su3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "10D6EAB7-B14B-45E9-92B9-4FADFBBB08AF"}], "operator": "OR"}]}], "sourceIdentifier": "support@hackerone.com"}