Lucene search
IbmCVE-2024-35118HistoryAug 29, 2024 - 4:15 p.m.
CVE-2024-35118
2024-08-2916:15:08
CWE-798
ibm
web.nvd.nist.gov
30
ibm
maas360
android
hard coded credentials
vulnerability
CVSS3
4.6
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
4.5
Confidence
High
EPSS
0.001
Percentile
21.4%
IBM MaaS360 for Android 6.31 through 8.60 is using hard coded credentials that can be obtained by a user with physical access to the device.
Affected configurations
Node
ibmmaas360_mdmRange6.31–8.60android
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | maas360_mdm | * | cpe:2.3:a:ibm:maas360_mdm:*:*:*:*:*:android:*:* |
CNA Affected
[
{
"cpes": [
"cpe:2.3:a:ibm:maas360:6.31:*:*:*:*:android:*:*",
"cpe:2.3:a:ibm:maas360:8.60:*:*:*:*:android:*:*"
],
"defaultStatus": "unaffected",
"platforms": [
"Android"
],
"product": "MaaS360",
"vendor": "IBM",
"versions": [
{
"lessThanOrEqual": "8.60",
"status": "affected",
"version": "6.31",
"versionType": "semver"
}
]
}
]Related
cvelist
cvelist
CVE-2024-35118 IBM MaaS360 information disclosure
2024-08-29 15:20:02
vulnrichment
vulnrichment
CVE-2024-35118 IBM MaaS360 information disclosure
2024-08-29 15:20:02
ibm
ibm
nvd
nvd
CVE-2024-35118
2024-08-29 16:15:08
CVSS3
4.6
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
4.5
Confidence
High
EPSS
0.001
Percentile
21.4%
Related for CVE-2024-35118