Lucene search

Mobileiron Security Vulnerabilities

cve

CVE-2023-38035

A security vulnerability in MICS Admin Portal in Ivanti MobileIron Sentry versions 9.18.0 and below, which may allow an attacker to bypass authentication controls on the administrative interface due to an insufficiently restrictive Apache HTTPD...

9.8CVSS

9.6AI Score

0.975EPSS

2023-08-21 05:15 PM

2669

In Wild

cve

CVE-2021-3540

By abusing the 'install rpm info detail' command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version...

7.2CVSS

6.9AI Score

0.001EPSS

2021-07-22 07:15 PM

cve

CVE-2021-3198

By abusing the 'install rpm url' command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core. This issue was fixed in version...

7.2CVSS

6.9AI Score

0.003EPSS

2021-07-22 07:15 PM

cve

CVE-2013-7286

MobileIron VSP < 5.9.1 and Sentry < 5.0 has a weak password obfuscation...

7.5CVSS

7.5AI Score

0.001EPSS

2020-02-12 06:15 PM