CVE-2023-38035

Name of the Vulnerable Software and Affected Versions Ivanti MobileIron Sentry versions 9.18.0 and below

Description A security vulnerability in the MICS Admin Portal of Ivanti MobileIron Sentry may allow an attacker to bypass authentication controls on the administrative interface due to an insufficiently restrictive Apache HTTPD configuration. This vulnerability can be exploited by unauthenticated users to access sensitive APIs used to configure Ivanti Sentry. The issue is being actively exploited in the wild, with reports of its use in attacks. Researchers have released proof-of-concept (PoC) exploit code for this flaw.

Recommendations For Ivanti MobileIron Sentry versions 9.18.0 and below, update to the latest version to address the authentication bypass vulnerability. As a temporary workaround, consider restricting access to the MICS Admin Portal and the vulnerable Apache HTTPD configuration to minimize the risk of exploitation. Additionally, monitor for any suspicious activity related to the exploitation of this vulnerability.