PT-2020-14467 · Mobileiron · Mobileiron Core

Published

2020-07-07

Updated

2021-07-21

CVE-2020-15507

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions MobileIron Core versions 10.3.0.3 and earlier MobileIron Core versions 10.4.0.0 through 10.4.0.3 MobileIron Core versions 10.5.1.0 through 10.5.2.0 MobileIron Core version 10.6.0.0

Description The issue allows remote attackers to read files on the system via unspecified vectors. This is an arbitrary file reading vulnerability that can be exploited by remote attackers.

Recommendations For versions 10.3.0.3 and earlier, update to version 10.3.0.4 or later. For versions 10.4.0.0 through 10.4.0.3, update to version 10.4.0.4 or later. For versions 10.5.1.0 through 10.5.2.0, update to version 10.5.1.1 or later for 10.5.1.x, and version 10.5.2.1 or later for 10.5.2.x. For version 10.6.0.0, update to version 10.6.0.1 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2020-15507

Affected Products

Mobileiron Core

PT-2020-14467 · Mobileiron · Mobileiron Core

CVE-2020-15507

Related Identifiers

Affected Products

References · 4