CVE-2023-35084 | Ivanti Endpoint Manager - Core Server Operational Intel

Executive Risk Summary

"The Ivanti Endpoint Manager is vulnerable to unsafe deserialization of user input, which could allow an attacker to execute commands remotely. This vulnerability affects Ivanti Endpoint Manager 2022 su3 and all previous versions."

Operational Audit Arsenal

Target Type Executable

Target Asset Ivanti Endpoint Manager Core Server

Standard Path %programfiles%Ivanti\Endpoint Manager\Core Server

PowerShell

# 🛠️ Senior Engineer Universal Audit
# Target: Ivanti Endpoint Manager Core Server (Executable)
$Targets = 'Ivanti Endpoint Manager Core Server'
$SearchPaths = @("$env:windir\System32", "$env:ProgramFiles", "${env:ProgramFiles(x86)}")

Get-ChildItem -Path $SearchPaths -Include $Targets -Recurse -ErrorAction SilentlyContinue | 
Select-Object FullName, @{Name="Version";Expression={$_.VersionInfo.ProductVersion}}

Patch Impact Forecast

Reboot Required Likely

Moderate

Internal Work Notes

CVE-2023-35084: Ivanti Endpoint Manager vulnerable to remote command execution due to unsafe deserialization of user input. Apply patch from Ivanti to mitigate risk.

Technical Intelligence & Operational Utilities • Delivered Weekly

Intelligence Sources

Official Advisoryhttps://forums.ivanti.com/s/article/SA-2023-08-08-CVE-2023-35084?language=en_US

Related Ivanti Threats

CVE-2024-11639 CVSS 10

Ivanti Cloud Services Application - Admin Web Console

CVE-2025-22467 CVSS 9.9

Ivanti Connect Secure - Connect Secure

CVE-2023-46808 CVSS 9.9

Ivanti Neurons for ITSM - File Upload Component

Data compiled from NVD, MSRC, and CISA KEV Catalog. Intelligence synthesized via AI. Scripts provided for diagnostic purposes under MIT License.