A remote code execution vulnerability in MobileIron Core & Connector versions 10.3.0.3 and previous versions, 10.4.0.0, 10.4.0.1, 10.4.0.2, 10.4.0.3, 10.5.1.0, 10.5.2.0 and 10.6.0.0; and Sentry versions 9.7.2 and previous versions, and 9.8.0; and Monitor and Reporting Database (RDB) version 2.0.0.1 and previous versions that allows remote malicious users to execute arbitrary code via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mobileiron core |
||
mobileiron enterprise connector |
||
mobileiron sentry |
||
mobileiron monitor and reporting database |
'Unauthorized access to elections support systems' detected tho 'no evidence to date that integrity of elections data has been compromised' Big US election coming up, security is vital and, oh look... a federal agency just got completely pwned for real
If you're wondering which bugs in particular miscreants are exploiting to break into, or attempt to break into, US government networks, wonder no more. And then make sure you've patched them. Uncle Sam's Dept of Homeland Security has this month identified at least six possible routes into the nation's computer systems, and the method used to gain total control over the machines once inside. Those six vulnerabilities are... ...plus CVE-2020-1472, aka ZeroLogon, in Microsoft Windows, which is expl...