CVE-2017-4951
- EPSS 0.18%
- Published 29.01.2018 16:29:00
- Last modified 21.11.2024 03:26:44
VMware AirWatch Console (9.2.x before 9.2.2 and 9.1.x before 9.1.5) contains a Cross Site Request Forgery vulnerability when accessing the App Catalog. An attacker may exploit this issue by tricking users into installing a malicious application on th...
CVE-2017-4930
- EPSS 0.29%
- Published 16.11.2017 21:29:00
- Last modified 20.04.2025 01:37:25
VMware AirWatch Console 9.x prior to 9.2.0 contains a vulnerability that could allow an authenticated AWC user to add a malicious URL to an enrolled device's 'Links' page. Successful exploitation of this issue could result in an unsuspecting AWC user...
CVE-2017-4931
- EPSS 0.21%
- Published 16.11.2017 21:29:00
- Last modified 20.04.2025 01:37:25
VMware AirWatch Console 9.x prior to 9.2.0 contains a vulnerability that could allow an authenticated AWC user to add malicious data to an enrolled device's log files. Successful exploitation of this issue could result in an unsuspecting AWC user ope...
- EPSS 0.13%
- Published 11.12.2014 15:59:01
- Last modified 12.04.2025 10:46:40
AirWatch by VMware On-Premise 7.3.x before 7.3.3.0 (FP3) allows remote authenticated users to obtain the organizational information and statistics from arbitrary tenants via vectors involving a direct object reference.