VMware AirWatch Console 9.x prior to 9.2.0 contains a vulnerability that could allow an authenticated AWC user to add a malicious URL to an enrolled device's 'Links' page. Successful exploitation of this issue could result in an unsuspecting AWC user being redirected to a malicious URL.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/101772 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1039750 | Third Party Advisory VDB Entry |
https://www.vmware.com/us/security/advisories/VMSA-2017-0016.html | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: vmware
Published: 2017-11-08T00:00:00
Updated: 2017-11-17T10:57:01
Reserved: 2016-12-26T00:00:00
Link: CVE-2017-4930
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-11-16T21:29:00.513
Modified: 2017-12-04T14:26:40.510
Link: CVE-2017-4930
JSON object: View
Redhat Information
No data.
CWE