CVE-2023-38343

Name of the Vulnerable Software and Affected Versions Ivanti Endpoint Manager versions prior to 2022 SU4

Description An XXE (XML external entity injection) vulnerability exists in the CSEP component. External entity references are enabled in the XML parser configuration. Exploitation of this vulnerability can lead to file disclosure or Server Side Request Forgery.

Recommendations For versions prior to 2022 SU4, update to 2022 SU4 or later to resolve the issue. As a temporary workaround, consider disabling the XML parser configuration that enables external entity references until a patch is available. Restrict access to the CSEP component to minimize the risk of exploitation.