A security vulnerability in EPMM Versions 11.10, 11.9 and 11.8 older allows a threat actor with knowledge of an enrolled device identifier to access and extract sensitive information, including device and environment configuration details, as well as secrets. This vulnerability poses a serious security risk, potentially exposing confidential data and system integrity.
History

Thu, 29 Aug 2024 21:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-200

cve-icon MITRE

Status: PUBLISHED

Assigner: hackerone

Published: 2023-11-14T23:18:08.440Z

Updated: 2024-08-29T17:14:47.553Z

Reserved: 2023-07-28T01:00:12.351Z

Link: CVE-2023-39337

cve-icon Vulnrichment

Updated: 2024-08-02T18:02:06.873Z

cve-icon NVD

Status : Modified

Published: 2023-11-15T00:15:08.437

Modified: 2024-11-21T08:15:11.210

Link: CVE-2023-39337

cve-icon Redhat

No data.