Search criteria
4 vulnerabilities found for mobileiron by ivanti
CVE-2021-3540 (GCVE-0-2021-3540)
Vulnerability from nvd – Published: 2021-07-22 18:27 – Updated: 2024-09-17 00:30
VLAI
Title
Ivanti MobileIron Core clish Restricted Shell Escape via Argument Injection
Summary
By abusing the 'install rpm info detail' command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0.
Severity
6.5 (Medium)
CWE
- CWE-88 - Argument Injection or Modification
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://www.rapid7.com/blog/post/2021/06/02/untit… | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Ivanti | MobileIron Core |
Affected:
10.7.0.1-9 , ≤ 10.7.0.1-9
(custom)
Affected: 11.0.0.1-3 , ≤ 11.0.0.1-3 (custom) |
Date Public
2021-06-02 00:00
Credits
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T17:01:07.964Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "MobileIron Core",
"vendor": "Ivanti",
"versions": [
{
"lessThanOrEqual": "10.7.0.1-9",
"status": "affected",
"version": "10.7.0.1-9",
"versionType": "custom"
},
{
"lessThanOrEqual": "11.0.0.1-3",
"status": "affected",
"version": "11.0.0.1-3",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "William Vu of Rapid7"
}
],
"datePublic": "2021-06-02T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "By abusing the \u0027install rpm info detail\u0027 command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-88",
"description": "CWE-88 Argument Injection or Modification",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-07-22T18:27:21.000Z",
"orgId": "9974b330-7714-4307-a722-5648477acda7",
"shortName": "rapid7"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Ivanti MobileIron Core clish Restricted Shell Escape via Argument Injection",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@rapid7.com",
"DATE_PUBLIC": "2021-06-02T13:05:00.000Z",
"ID": "CVE-2021-3540",
"STATE": "PUBLIC",
"TITLE": "Ivanti MobileIron Core clish Restricted Shell Escape via Argument Injection"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "MobileIron Core",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "10.7.0.1-9",
"version_value": "10.7.0.1-9"
},
{
"version_affected": "\u003c=",
"version_name": "11.0.0.1-3",
"version_value": "11.0.0.1-3"
}
]
}
}
]
},
"vendor_name": "Ivanti"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "William Vu of Rapid7"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "By abusing the \u0027install rpm info detail\u0027 command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-88 Argument Injection or Modification"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/",
"refsource": "MISC",
"url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
}
]
},
"source": {
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "9974b330-7714-4307-a722-5648477acda7",
"assignerShortName": "rapid7",
"cveId": "CVE-2021-3540",
"datePublished": "2021-07-22T18:27:21.040Z",
"dateReserved": "2021-05-06T00:00:00.000Z",
"dateUpdated": "2024-09-17T00:30:44.288Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-3198 (GCVE-0-2021-3198)
Vulnerability from nvd – Published: 2021-07-22 18:27 – Updated: 2024-09-16 19:10
VLAI
Title
Ivanti MobileIron Core clish Restricted Shell Escape via OS Command Injection
Summary
By abusing the 'install rpm url' command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0.
Severity
6.5 (Medium)
CWE
- CWE-78 - OS Command Injection
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://www.rapid7.com/blog/post/2021/06/02/untit… | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Ivanti | MobileIron Core |
Affected:
10.7.0.1-9 , ≤ 10.7.0.1-9
(custom)
Affected: 11.0.0.1-3 , ≤ 11.0.0.1-3 (custom) |
Date Public
2021-06-02 00:00
Credits
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T16:45:51.406Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "MobileIron Core",
"vendor": "Ivanti",
"versions": [
{
"lessThanOrEqual": "10.7.0.1-9",
"status": "affected",
"version": "10.7.0.1-9",
"versionType": "custom"
},
{
"lessThanOrEqual": "11.0.0.1-3",
"status": "affected",
"version": "11.0.0.1-3",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "William Vu of Rapid7"
}
],
"datePublic": "2021-06-02T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "By abusing the \u0027install rpm url\u0027 command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-78",
"description": "CWE-78 OS Command Injection",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-07-22T18:27:20.000Z",
"orgId": "9974b330-7714-4307-a722-5648477acda7",
"shortName": "rapid7"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Ivanti MobileIron Core clish Restricted Shell Escape via OS Command Injection",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@rapid7.com",
"DATE_PUBLIC": "2021-06-02T13:05:00.000Z",
"ID": "CVE-2021-3198",
"STATE": "PUBLIC",
"TITLE": "Ivanti MobileIron Core clish Restricted Shell Escape via OS Command Injection"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "MobileIron Core",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "10.7.0.1-9",
"version_value": "10.7.0.1-9"
},
{
"version_affected": "\u003c=",
"version_name": "11.0.0.1-3",
"version_value": "11.0.0.1-3"
}
]
}
}
]
},
"vendor_name": "Ivanti"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "William Vu of Rapid7"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "By abusing the \u0027install rpm url\u0027 command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-78 OS Command Injection"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/",
"refsource": "MISC",
"url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
}
]
},
"source": {
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "9974b330-7714-4307-a722-5648477acda7",
"assignerShortName": "rapid7",
"cveId": "CVE-2021-3198",
"datePublished": "2021-07-22T18:27:20.123Z",
"dateReserved": "2021-01-21T00:00:00.000Z",
"dateUpdated": "2024-09-16T19:10:11.444Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-3540 (GCVE-0-2021-3540)
Vulnerability from cvelistv5 – Published: 2021-07-22 18:27 – Updated: 2024-09-17 00:30
VLAI
Title
Ivanti MobileIron Core clish Restricted Shell Escape via Argument Injection
Summary
By abusing the 'install rpm info detail' command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0.
Severity
6.5 (Medium)
CWE
- CWE-88 - Argument Injection or Modification
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://www.rapid7.com/blog/post/2021/06/02/untit… | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Ivanti | MobileIron Core |
Affected:
10.7.0.1-9 , ≤ 10.7.0.1-9
(custom)
Affected: 11.0.0.1-3 , ≤ 11.0.0.1-3 (custom) |
Date Public
2021-06-02 00:00
Credits
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T17:01:07.964Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "MobileIron Core",
"vendor": "Ivanti",
"versions": [
{
"lessThanOrEqual": "10.7.0.1-9",
"status": "affected",
"version": "10.7.0.1-9",
"versionType": "custom"
},
{
"lessThanOrEqual": "11.0.0.1-3",
"status": "affected",
"version": "11.0.0.1-3",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "William Vu of Rapid7"
}
],
"datePublic": "2021-06-02T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "By abusing the \u0027install rpm info detail\u0027 command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-88",
"description": "CWE-88 Argument Injection or Modification",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-07-22T18:27:21.000Z",
"orgId": "9974b330-7714-4307-a722-5648477acda7",
"shortName": "rapid7"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Ivanti MobileIron Core clish Restricted Shell Escape via Argument Injection",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@rapid7.com",
"DATE_PUBLIC": "2021-06-02T13:05:00.000Z",
"ID": "CVE-2021-3540",
"STATE": "PUBLIC",
"TITLE": "Ivanti MobileIron Core clish Restricted Shell Escape via Argument Injection"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "MobileIron Core",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "10.7.0.1-9",
"version_value": "10.7.0.1-9"
},
{
"version_affected": "\u003c=",
"version_name": "11.0.0.1-3",
"version_value": "11.0.0.1-3"
}
]
}
}
]
},
"vendor_name": "Ivanti"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "William Vu of Rapid7"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "By abusing the \u0027install rpm info detail\u0027 command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-88 Argument Injection or Modification"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/",
"refsource": "MISC",
"url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
}
]
},
"source": {
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "9974b330-7714-4307-a722-5648477acda7",
"assignerShortName": "rapid7",
"cveId": "CVE-2021-3540",
"datePublished": "2021-07-22T18:27:21.040Z",
"dateReserved": "2021-05-06T00:00:00.000Z",
"dateUpdated": "2024-09-17T00:30:44.288Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2021-3198 (GCVE-0-2021-3198)
Vulnerability from cvelistv5 – Published: 2021-07-22 18:27 – Updated: 2024-09-16 19:10
VLAI
Title
Ivanti MobileIron Core clish Restricted Shell Escape via OS Command Injection
Summary
By abusing the 'install rpm url' command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0.
Severity
6.5 (Medium)
CWE
- CWE-78 - OS Command Injection
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://www.rapid7.com/blog/post/2021/06/02/untit… | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Ivanti | MobileIron Core |
Affected:
10.7.0.1-9 , ≤ 10.7.0.1-9
(custom)
Affected: 11.0.0.1-3 , ≤ 11.0.0.1-3 (custom) |
Date Public
2021-06-02 00:00
Credits
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T16:45:51.406Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "MobileIron Core",
"vendor": "Ivanti",
"versions": [
{
"lessThanOrEqual": "10.7.0.1-9",
"status": "affected",
"version": "10.7.0.1-9",
"versionType": "custom"
},
{
"lessThanOrEqual": "11.0.0.1-3",
"status": "affected",
"version": "11.0.0.1-3",
"versionType": "custom"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "William Vu of Rapid7"
}
],
"datePublic": "2021-06-02T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "By abusing the \u0027install rpm url\u0027 command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-78",
"description": "CWE-78 OS Command Injection",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-07-22T18:27:20.000Z",
"orgId": "9974b330-7714-4307-a722-5648477acda7",
"shortName": "rapid7"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Ivanti MobileIron Core clish Restricted Shell Escape via OS Command Injection",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@rapid7.com",
"DATE_PUBLIC": "2021-06-02T13:05:00.000Z",
"ID": "CVE-2021-3198",
"STATE": "PUBLIC",
"TITLE": "Ivanti MobileIron Core clish Restricted Shell Escape via OS Command Injection"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "MobileIron Core",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "10.7.0.1-9",
"version_value": "10.7.0.1-9"
},
{
"version_affected": "\u003c=",
"version_name": "11.0.0.1-3",
"version_value": "11.0.0.1-3"
}
]
}
}
]
},
"vendor_name": "Ivanti"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "William Vu of Rapid7"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "By abusing the \u0027install rpm url\u0027 command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version 11.1.0.0."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-78 OS Command Injection"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/",
"refsource": "MISC",
"url": "https://www.rapid7.com/blog/post/2021/06/02/untitled-cve-2021-3198-and-cve-2021-3540-mobileiron-shell-escape-privilege-escalation-vulnerabilities/"
}
]
},
"source": {
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "9974b330-7714-4307-a722-5648477acda7",
"assignerShortName": "rapid7",
"cveId": "CVE-2021-3198",
"datePublished": "2021-07-22T18:27:20.123Z",
"dateReserved": "2021-01-21T00:00:00.000Z",
"dateUpdated": "2024-09-16T19:10:11.444Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}