Search

Find a vulnerability

Search criteria

    2 vulnerabilities found for Airwatch Inbox by VMware

    CVE-2017-4896 (GCVE-0-2017-4896)

    Vulnerability from nvd – Published: 2017-05-10 14:00 – Updated: 2024-08-05 14:39
    VLAI
    Summary
    Airwatch Inbox for Android contains a vulnerability that may allow a rooted device to decrypt the local data used by the application. Successful exploitation of this issue may result in an unauthorized disclosure of confidential data.
    Severity
    No CVSS data available.
    CWE
    • Encyption bypass
    Assigner
    References
    URL Tags
    http://www.securityfocus.com/bid/95889 vdb-entryx_refsource_BID
    http://www.vmware.com/us/security/advisories/VMSA… x_refsource_CONFIRM
    http://www.securitytracker.com/id/1037738 vdb-entryx_refsource_SECTRACK
    Impacted products
    Date Public
    2017-01-30 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T14:39:41.485Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "95889",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/95889"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.vmware.com/us/security/advisories/VMSA-2017-0001.html"
              },
              {
                "name": "1037738",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1037738"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Airwatch Console",
              "vendor": "VMware",
              "versions": [
                {
                  "status": "affected",
                  "version": "x.x"
                }
              ]
            },
            {
              "product": "Airwatch Inbox",
              "vendor": "VMware",
              "versions": [
                {
                  "status": "affected",
                  "version": "x.x"
                }
              ]
            }
          ],
          "datePublic": "2017-01-30T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Airwatch Inbox for Android contains a vulnerability that may allow a rooted device to decrypt the local data used by the application. Successful exploitation of this issue may result in an unauthorized disclosure of confidential data."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Encyption bypass",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-24T12:57:01.000Z",
            "orgId": "dcf2e128-44bd-42ed-91e8-88f912c1401d",
            "shortName": "vmware"
          },
          "references": [
            {
              "name": "95889",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/95889"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.vmware.com/us/security/advisories/VMSA-2017-0001.html"
            },
            {
              "name": "1037738",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1037738"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "security@vmware.com",
              "ID": "CVE-2017-4896",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Airwatch Console",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "x.x"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Airwatch Inbox",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "x.x"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "VMware"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Airwatch Inbox for Android contains a vulnerability that may allow a rooted device to decrypt the local data used by the application. Successful exploitation of this issue may result in an unauthorized disclosure of confidential data."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Encyption bypass"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "95889",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/95889"
                },
                {
                  "name": "http://www.vmware.com/us/security/advisories/VMSA-2017-0001.html",
                  "refsource": "CONFIRM",
                  "url": "http://www.vmware.com/us/security/advisories/VMSA-2017-0001.html"
                },
                {
                  "name": "1037738",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1037738"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "dcf2e128-44bd-42ed-91e8-88f912c1401d",
        "assignerShortName": "vmware",
        "cveId": "CVE-2017-4896",
        "datePublished": "2017-05-10T14:00:00.000Z",
        "dateReserved": "2016-12-26T00:00:00.000Z",
        "dateUpdated": "2024-08-05T14:39:41.485Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2017-4896 (GCVE-0-2017-4896)

    Vulnerability from cvelistv5 – Published: 2017-05-10 14:00 – Updated: 2024-08-05 14:39
    VLAI
    Summary
    Airwatch Inbox for Android contains a vulnerability that may allow a rooted device to decrypt the local data used by the application. Successful exploitation of this issue may result in an unauthorized disclosure of confidential data.
    Severity
    No CVSS data available.
    CWE
    • Encyption bypass
    Assigner
    References
    URL Tags
    http://www.securityfocus.com/bid/95889 vdb-entryx_refsource_BID
    http://www.vmware.com/us/security/advisories/VMSA… x_refsource_CONFIRM
    http://www.securitytracker.com/id/1037738 vdb-entryx_refsource_SECTRACK
    Impacted products
    Date Public
    2017-01-30 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T14:39:41.485Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "95889",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/95889"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.vmware.com/us/security/advisories/VMSA-2017-0001.html"
              },
              {
                "name": "1037738",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1037738"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Airwatch Console",
              "vendor": "VMware",
              "versions": [
                {
                  "status": "affected",
                  "version": "x.x"
                }
              ]
            },
            {
              "product": "Airwatch Inbox",
              "vendor": "VMware",
              "versions": [
                {
                  "status": "affected",
                  "version": "x.x"
                }
              ]
            }
          ],
          "datePublic": "2017-01-30T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Airwatch Inbox for Android contains a vulnerability that may allow a rooted device to decrypt the local data used by the application. Successful exploitation of this issue may result in an unauthorized disclosure of confidential data."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Encyption bypass",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-24T12:57:01.000Z",
            "orgId": "dcf2e128-44bd-42ed-91e8-88f912c1401d",
            "shortName": "vmware"
          },
          "references": [
            {
              "name": "95889",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/95889"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.vmware.com/us/security/advisories/VMSA-2017-0001.html"
            },
            {
              "name": "1037738",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1037738"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "security@vmware.com",
              "ID": "CVE-2017-4896",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Airwatch Console",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "x.x"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Airwatch Inbox",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "x.x"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "VMware"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Airwatch Inbox for Android contains a vulnerability that may allow a rooted device to decrypt the local data used by the application. Successful exploitation of this issue may result in an unauthorized disclosure of confidential data."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Encyption bypass"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "95889",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/95889"
                },
                {
                  "name": "http://www.vmware.com/us/security/advisories/VMSA-2017-0001.html",
                  "refsource": "CONFIRM",
                  "url": "http://www.vmware.com/us/security/advisories/VMSA-2017-0001.html"
                },
                {
                  "name": "1037738",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1037738"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "dcf2e128-44bd-42ed-91e8-88f912c1401d",
        "assignerShortName": "vmware",
        "cveId": "CVE-2017-4896",
        "datePublished": "2017-05-10T14:00:00.000Z",
        "dateReserved": "2016-12-26T00:00:00.000Z",
        "dateUpdated": "2024-08-05T14:39:41.485Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }