Vulnerabilities > CVE-2017-4896 - Local Security Bypass vulnerability in VMWare Airwatch Inbox for Android

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

vmware

NVD

Published: 2017-05-10

Updated: 2019-10-03

Summary

Airwatch Inbox for Android contains a vulnerability that may allow a rooted device to decrypt the local data used by the application. Successful exploitation of this issue may result in an unauthorized disclosure of confidential data.

Vulnerable Configurations

Part	Description	Count
Application	Vmware Vmware Airwatch Agent - Vmware Airwatch Inbox -	2

References

http://www.securityfocus.com/bid/95889
http://www.securitytracker.com/id/1037738
http://www.vmware.com/us/security/advisories/VMSA-2017-0001.html