Security News > 2020 > September > Vulnerabilities Expose Thousands of MobileIron Servers to Remote Attacks

Researchers have disclosed the details of several potentially serious vulnerabilities affecting MobileIron's mobile device management solutions, including a flaw that can be exploited by an unauthenticated attacker for remote code execution on affected servers.

The vulnerabilities were identified by researchers at security consulting firm DEVCORE and they were reported to MobileIron in early April.

In a blog post published last week, DEVCORE's Orange Tsai reported that they have decided to analyze MobileIron's products due to their widespread use - the vendor claims more than 20,000 enterprises use its solutions and the researchers' analysis showed that over 15% of Global Fortune 500 organizations exposed their MobileIron servers to the internet, including Facebook.

Orange Tsai told SecurityWeek that exploiting CVE-2020-15505, which is a deserialization-related issue, is enough for a remote, unauthenticated attacker to achieve arbitrary code execution on a vulnerable MobileIron server.

The researcher says there are currently roughly 10,000 potentially exposed servers on the internet, and while a patch has been available for months, he claims roughly 30% of servers on the internet remain unpatched.

News URL

http://feedproxy.google.com/~r/Securityweek/~3/v0-eMaTKSaU/vulnerabilities-expose-thousands-mobileiron-servers-remote-attacks