Search

Find a vulnerability

Search criteria

    4 vulnerabilities found for mobileiron by ivanti

    CVE-2021-3540 (GCVE-0-2021-3540)

    Vulnerability from nvd – Published: 2021-07-22 18:27 – Updated: 2024-09-17 00:30
    VLAI
    Title
    Ivanti MobileIron Core clish Restricted Shell Escape via Argument Injection
    Summary
    By abusing the 'install rpm info detail' command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0.
    CWE
    • CWE-88 - Argument Injection or Modification
    Assigner
    References
    Impacted products
    Vendor Product Version
    Ivanti MobileIron Core Affected: 10.7.0.1-9 , ≤ 10.7.0.1-9 (custom)
    Affected: 11.0.0.1-3 , ≤ 11.0.0.1-3 (custom)
    Create a notification for this product.
    Date Public
    2021-06-02 00:00
    Credits
    William Vu of Rapid7
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T17:01:07.964Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MobileIron Core",
              "vendor": "Ivanti",
              "versions": [
                {
                  "lessThanOrEqual": "10.7.0.1-9",
                  "status": "affected",
                  "version": "10.7.0.1-9",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.0.0.1-3",
                  "status": "affected",
                  "version": "11.0.0.1-3",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "William Vu of Rapid7"
            }
          ],
          "datePublic": "2021-06-02T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "By abusing the \u0027install rpm info detail\u0027 command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-88",
                  "description": "CWE-88 Argument Injection or Modification",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-07-22T18:27:21.000Z",
            "orgId": "9974b330-7714-4307-a722-5648477acda7",
            "shortName": "rapid7"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Ivanti MobileIron Core clish Restricted Shell Escape via Argument Injection",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@rapid7.com",
              "DATE_PUBLIC": "2021-06-02T13:05:00.000Z",
              "ID": "CVE-2021-3540",
              "STATE": "PUBLIC",
              "TITLE": "Ivanti MobileIron Core clish Restricted Shell Escape via Argument Injection"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "MobileIron Core",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c=",
                                "version_name": "10.7.0.1-9",
                                "version_value": "10.7.0.1-9"
                              },
                              {
                                "version_affected": "\u003c=",
                                "version_name": "11.0.0.1-3",
                                "version_value": "11.0.0.1-3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Ivanti"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "William Vu of Rapid7"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "By abusing the \u0027install rpm info detail\u0027 command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-88 Argument Injection or Modification"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/",
                  "refsource": "MISC",
                  "url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
                }
              ]
            },
            "source": {
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "9974b330-7714-4307-a722-5648477acda7",
        "assignerShortName": "rapid7",
        "cveId": "CVE-2021-3540",
        "datePublished": "2021-07-22T18:27:21.040Z",
        "dateReserved": "2021-05-06T00:00:00.000Z",
        "dateUpdated": "2024-09-17T00:30:44.288Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-3198 (GCVE-0-2021-3198)

    Vulnerability from nvd – Published: 2021-07-22 18:27 – Updated: 2024-09-16 19:10
    VLAI
    Title
    Ivanti MobileIron Core clish Restricted Shell Escape via OS Command Injection
    Summary
    By abusing the 'install rpm url' command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0.
    CWE
    • CWE-78 - OS Command Injection
    Assigner
    References
    Impacted products
    Vendor Product Version
    Ivanti MobileIron Core Affected: 10.7.0.1-9 , ≤ 10.7.0.1-9 (custom)
    Affected: 11.0.0.1-3 , ≤ 11.0.0.1-3 (custom)
    Create a notification for this product.
    Date Public
    2021-06-02 00:00
    Credits
    William Vu of Rapid7
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:45:51.406Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MobileIron Core",
              "vendor": "Ivanti",
              "versions": [
                {
                  "lessThanOrEqual": "10.7.0.1-9",
                  "status": "affected",
                  "version": "10.7.0.1-9",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.0.0.1-3",
                  "status": "affected",
                  "version": "11.0.0.1-3",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "William Vu of Rapid7"
            }
          ],
          "datePublic": "2021-06-02T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "By abusing the \u0027install rpm url\u0027 command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "CWE-78 OS Command Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-07-22T18:27:20.000Z",
            "orgId": "9974b330-7714-4307-a722-5648477acda7",
            "shortName": "rapid7"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Ivanti MobileIron Core clish Restricted Shell Escape via OS Command Injection",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@rapid7.com",
              "DATE_PUBLIC": "2021-06-02T13:05:00.000Z",
              "ID": "CVE-2021-3198",
              "STATE": "PUBLIC",
              "TITLE": "Ivanti MobileIron Core clish Restricted Shell Escape via OS Command Injection"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "MobileIron Core",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c=",
                                "version_name": "10.7.0.1-9",
                                "version_value": "10.7.0.1-9"
                              },
                              {
                                "version_affected": "\u003c=",
                                "version_name": "11.0.0.1-3",
                                "version_value": "11.0.0.1-3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Ivanti"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "William Vu of Rapid7"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "By abusing the \u0027install rpm url\u0027 command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-78 OS Command Injection"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/",
                  "refsource": "MISC",
                  "url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
                }
              ]
            },
            "source": {
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "9974b330-7714-4307-a722-5648477acda7",
        "assignerShortName": "rapid7",
        "cveId": "CVE-2021-3198",
        "datePublished": "2021-07-22T18:27:20.123Z",
        "dateReserved": "2021-01-21T00:00:00.000Z",
        "dateUpdated": "2024-09-16T19:10:11.444Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-3540 (GCVE-0-2021-3540)

    Vulnerability from cvelistv5 – Published: 2021-07-22 18:27 – Updated: 2024-09-17 00:30
    VLAI
    Title
    Ivanti MobileIron Core clish Restricted Shell Escape via Argument Injection
    Summary
    By abusing the 'install rpm info detail' command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0.
    CWE
    • CWE-88 - Argument Injection or Modification
    Assigner
    References
    Impacted products
    Vendor Product Version
    Ivanti MobileIron Core Affected: 10.7.0.1-9 , ≤ 10.7.0.1-9 (custom)
    Affected: 11.0.0.1-3 , ≤ 11.0.0.1-3 (custom)
    Create a notification for this product.
    Date Public
    2021-06-02 00:00
    Credits
    William Vu of Rapid7
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T17:01:07.964Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MobileIron Core",
              "vendor": "Ivanti",
              "versions": [
                {
                  "lessThanOrEqual": "10.7.0.1-9",
                  "status": "affected",
                  "version": "10.7.0.1-9",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.0.0.1-3",
                  "status": "affected",
                  "version": "11.0.0.1-3",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "William Vu of Rapid7"
            }
          ],
          "datePublic": "2021-06-02T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "By abusing the \u0027install rpm info detail\u0027 command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-88",
                  "description": "CWE-88 Argument Injection or Modification",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-07-22T18:27:21.000Z",
            "orgId": "9974b330-7714-4307-a722-5648477acda7",
            "shortName": "rapid7"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Ivanti MobileIron Core clish Restricted Shell Escape via Argument Injection",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@rapid7.com",
              "DATE_PUBLIC": "2021-06-02T13:05:00.000Z",
              "ID": "CVE-2021-3540",
              "STATE": "PUBLIC",
              "TITLE": "Ivanti MobileIron Core clish Restricted Shell Escape via Argument Injection"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "MobileIron Core",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c=",
                                "version_name": "10.7.0.1-9",
                                "version_value": "10.7.0.1-9"
                              },
                              {
                                "version_affected": "\u003c=",
                                "version_name": "11.0.0.1-3",
                                "version_value": "11.0.0.1-3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Ivanti"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "William Vu of Rapid7"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "By abusing the \u0027install rpm info detail\u0027 command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-88 Argument Injection or Modification"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/",
                  "refsource": "MISC",
                  "url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
                }
              ]
            },
            "source": {
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "9974b330-7714-4307-a722-5648477acda7",
        "assignerShortName": "rapid7",
        "cveId": "CVE-2021-3540",
        "datePublished": "2021-07-22T18:27:21.040Z",
        "dateReserved": "2021-05-06T00:00:00.000Z",
        "dateUpdated": "2024-09-17T00:30:44.288Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-3198 (GCVE-0-2021-3198)

    Vulnerability from cvelistv5 – Published: 2021-07-22 18:27 – Updated: 2024-09-16 19:10
    VLAI
    Title
    Ivanti MobileIron Core clish Restricted Shell Escape via OS Command Injection
    Summary
    By abusing the 'install rpm url' command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0.
    CWE
    • CWE-78 - OS Command Injection
    Assigner
    References
    Impacted products
    Vendor Product Version
    Ivanti MobileIron Core Affected: 10.7.0.1-9 , ≤ 10.7.0.1-9 (custom)
    Affected: 11.0.0.1-3 , ≤ 11.0.0.1-3 (custom)
    Create a notification for this product.
    Date Public
    2021-06-02 00:00
    Credits
    William Vu of Rapid7
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:45:51.406Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MobileIron Core",
              "vendor": "Ivanti",
              "versions": [
                {
                  "lessThanOrEqual": "10.7.0.1-9",
                  "status": "affected",
                  "version": "10.7.0.1-9",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.0.0.1-3",
                  "status": "affected",
                  "version": "11.0.0.1-3",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "William Vu of Rapid7"
            }
          ],
          "datePublic": "2021-06-02T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "By abusing the \u0027install rpm url\u0027 command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "CWE-78 OS Command Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-07-22T18:27:20.000Z",
            "orgId": "9974b330-7714-4307-a722-5648477acda7",
            "shortName": "rapid7"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Ivanti MobileIron Core clish Restricted Shell Escape via OS Command Injection",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@rapid7.com",
              "DATE_PUBLIC": "2021-06-02T13:05:00.000Z",
              "ID": "CVE-2021-3198",
              "STATE": "PUBLIC",
              "TITLE": "Ivanti MobileIron Core clish Restricted Shell Escape via OS Command Injection"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "MobileIron Core",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c=",
                                "version_name": "10.7.0.1-9",
                                "version_value": "10.7.0.1-9"
                              },
                              {
                                "version_affected": "\u003c=",
                                "version_name": "11.0.0.1-3",
                                "version_value": "11.0.0.1-3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Ivanti"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "William Vu of Rapid7"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "By abusing the \u0027install rpm url\u0027 command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-78 OS Command Injection"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/",
                  "refsource": "MISC",
                  "url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
                }
              ]
            },
            "source": {
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "9974b330-7714-4307-a722-5648477acda7",
        "assignerShortName": "rapid7",
        "cveId": "CVE-2021-3198",
        "datePublished": "2021-07-22T18:27:20.123Z",
        "dateReserved": "2021-01-21T00:00:00.000Z",
        "dateUpdated": "2024-09-16T19:10:11.444Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }