7.5
CVSSv2

CVE-2020-15505

Published: 07/07/2020 Updated: 18/09/2020
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

A remote code execution vulnerability in MobileIron Core & Connector versions 10.3.0.3 and previous versions, 10.4.0.0, 10.4.0.1, 10.4.0.2, 10.4.0.3, 10.5.1.0, 10.5.2.0 and 10.6.0.0; and Sentry versions 9.7.2 and previous versions, and 9.8.0; and Monitor and Reporting Database (RDB) version 2.0.0.1 and previous versions that allows remote malicious users to execute arbitrary code via unspecified vectors.

Vulnerability Trend

Github Repositories

CVE-2020-15505: RCE on MobileIron MDM PoC

CVE-2020-15505 RCE on MobileIron MDM PoC Usage git clone githubcom/swiper/CVE-2020-15505 cd CVE-2020-15505/ chmod +x exploitsh /exploitsh <url> <cmd> Original blog post blogorangetw/2020/09/how-i-hacked-facebook-again-mobileiron-mdm-rcehtml NOTE this is my personal code, only made for myself only to be used by myself don