A security vulnerability has been identified in EPMM Versions 11.10, 11.9 and 11.8 and older allowing an unauthenticated threat actor to impersonate any existing user during the device enrollment process. This issue poses a significant security risk, as it enables unauthorized access and potential misuse of user accounts and resources.
History

Thu, 29 Aug 2024 21:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-269

cve-icon MITRE

Status: PUBLISHED

Assigner: hackerone

Published: 2023-11-14T23:18:08.402Z

Updated: 2024-08-29T17:17:07.805Z

Reserved: 2023-07-28T01:00:12.350Z

Link: CVE-2023-39335

cve-icon Vulnrichment

Updated: 2024-08-02T18:02:06.781Z

cve-icon NVD

Status : Modified

Published: 2023-11-15T00:15:08.390

Modified: 2024-11-21T08:15:10.943

Link: CVE-2023-39335

cve-icon Redhat

No data.