Security News > 2022 > July > Critical FileWave MDM Flaws Open Organization-Managed Devices to Remote Hackers
FileWave's mobile device management system has been found vulnerable to two critical security flaws that could be leveraged to carry out remote attacks and seize control of a fleet of devices connected to it.
"The vulnerabilities are remotely exploitable and enable an attacker to bypass authentication mechanisms and gain full control over the MDM platform and its managed devices," Claroty security researcher Noam Moshe said in a Monday report.
FileWave MDM is a cross-platform mobile device management solution that allows IT administrators to manage and monitor all of an organization's devices, including mobile phones, tablets, laptops, workstations, and smart TVs. The platform functions as a channel to push mandatory software and updates, change device settings, and even remotely wipe devices, all of which is delivered from a central server.
Claroty said it discovered more than 1,100 vulnerable internet-facing FileWave servers belonging to government, education, and large enterprise sectors, each containing an "Unrestricted number of managed devices."
Should the weaknesses be successfully exploited, a remote adversary could gain unauthorized privileged access to the internet-accessible instances and commandeer the managed devices, granting carte blanche access to all the digital assets in the network.
"This enables us to control all of the servers' managed devices, exfiltrate all sensitive data being held by the devices, including usernames, email addresses, IP addresses, geo-location etc., and install malicious software on managed devices," Moshe explained.
News URL
https://thehackernews.com/2022/07/critical-filewave-mdm-flaws-open.html
Related news
- Critical 1Password flaws may allow hackers to snatch your passwords (CVE-2024-42219, CVE-2024-42218) (source)
- Sonos Speaker Flaws Could Have Let Remote Hackers Eavesdrop on Users (source)
- Critical SAP flaw allows remote attackers to bypass authentication (source)
- Critical Flaw in WordPress LiteSpeed Cache Plugin Allows Hackers Admin Access (source)
- Hackers are exploiting critical bug in LiteSpeed Cache plugin (source)
- Critical Flaws in Traccar GPS System Expose Users to Remote Attacks (source)
- Critical WPML Plugin Flaw Exposes WordPress Sites to Remote Code Execution (source)
- Cisco Fixes Two Critical Flaws in Smart Licensing Utility to Prevent Remote Attacks (source)
- Russian military hackers linked to critical infrastructure attacks (source)
- Apache fixes critical OFBiz remote code execution vulnerability (source)