CVE-2020-35137
CVE-2020-35137 concerns MobileIron agents for Android and iOS (through 2021-03-22) that hardcode an API key in com/mobileiron/registration/RegisterActivity.java. This key is used to reach the SaaS discovery API via api/v1/gateway/customers/servers. The feature is opt-in and not enabled by default...