An authentication bypass vulnerability in Ivanti EPMM allows unauthorized users to access restricted functionality or resources of the application without proper authentication.
https://www.theregister.com/2024/01/22/infosec_news_roundup/
https://www.ivanti.com/blog/cve-2023-35078-new-ivanti-epmm-vulnerability
https://forums.ivanti.com/s/article/CVE-2023-35078-Remote-unauthenticated-API-access-vulnerability
https://forums.ivanti.com/s/article/CVE-2023-35078-Remote-unauthenticated-API-access-vulnerability