Security News > 2022 > July > Critical FileWave MDM Flaws Open Organization-Managed Devices to Remote Hackers

Critical FileWave MDM Flaws Open Organization-Managed Devices to Remote Hackers
2022-07-26 10:12

FileWave's mobile device management system has been found vulnerable to two critical security flaws that could be leveraged to carry out remote attacks and seize control of a fleet of devices connected to it.

"The vulnerabilities are remotely exploitable and enable an attacker to bypass authentication mechanisms and gain full control over the MDM platform and its managed devices," Claroty security researcher Noam Moshe said in a Monday report.

FileWave MDM is a cross-platform mobile device management solution that allows IT administrators to manage and monitor all of an organization's devices, including mobile phones, tablets, laptops, workstations, and smart TVs. The platform functions as a channel to push mandatory software and updates, change device settings, and even remotely wipe devices, all of which is delivered from a central server.

Claroty said it discovered more than 1,100 vulnerable internet-facing FileWave servers belonging to government, education, and large enterprise sectors, each containing an "Unrestricted number of managed devices."

Should the weaknesses be successfully exploited, a remote adversary could gain unauthorized privileged access to the internet-accessible instances and commandeer the managed devices, granting carte blanche access to all the digital assets in the network.

"This enables us to control all of the servers' managed devices, exfiltrate all sensitive data being held by the devices, including usernames, email addresses, IP addresses, geo-location etc., and install malicious software on managed devices," Moshe explained.


News URL

https://thehackernews.com/2022/07/critical-filewave-mdm-flaws-open.html