CVE-2018-6968
high-risk
Published 2018-06-11
The VMware AirWatch Agent for Android prior to 8.2 and AirWatch Agent for Windows Mobile prior to 6.5.2 contain a remote code execution vulnerability in real time File Manager capabilities. This vulnerability may allow for unauthorized creation and execution of files in the Agent sandbox and other publicly accessible directories such as those on the SD card by a malicious administrator.
Do I need to act?
~
9.5% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
10
CVSS 10.0/10
Critical
NETWORK
/ LOW complexity
Affected Products (2)
Airwatch Agent
Airwatch Agent
Affected Vendors
References (6)
Third Party Advisory
http://www.securityfocus.com/bid/104441
Third Party Advisory
http://www.securitytracker.com/id/1041060
Vendor Advisory
http://www.vmware.com/security/advisories/VMSA-2018-0015.html
Third Party Advisory
http://www.securityfocus.com/bid/104441
Third Party Advisory
http://www.securitytracker.com/id/1041060
Vendor Advisory
http://www.vmware.com/security/advisories/VMSA-2018-0015.html
51
/ 100
high-risk
Severity
33/34 · Critical
Exploitability
11/34 · Low
Exposure
7/34 · Low