Vulnerability Details : CVE-2018-6968
The VMware AirWatch Agent for Android prior to 8.2 and AirWatch Agent for Windows Mobile prior to 6.5.2 contain a remote code execution vulnerability in real time File Manager capabilities. This vulnerability may allow for unauthorized creation and execution of files in the Agent sandbox and other publicly accessible directories such as those on the SD card by a malicious administrator.
Vulnerability category: Execute code
Products affected by CVE-2018-6968
- cpe:2.3:a:vmware:airwatch_agent:*:*:*:*:*:windows_mobile:*:*
- cpe:2.3:a:vmware:airwatch_agent:*:*:*:*:*:android:*:*
Exploit prediction scoring system (EPSS) score for CVE-2018-6968
5.05%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 93 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2018-6968
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST | |
10.0
|
CRITICAL | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H |
3.9
|
6.0
|
NIST |
References for CVE-2018-6968
-
http://www.securityfocus.com/bid/104441
VMware AirWatch Agent CVE-2018-6968 Remote Code Execution VulnerabilityThird Party Advisory;VDB Entry
-
http://www.vmware.com/security/advisories/VMSA-2018-0015.html
VMSA-2018-0015.1Vendor Advisory
-
http://www.securitytracker.com/id/1041060
VMware AirWatch Agent File Manager Function Lets Remote Authenticated Users Execute Arbitrary Code on the Target System - SecurityTrackerThird Party Advisory;VDB Entry
Jump to