Vulnerabilities > Ivanti > Mobileiron > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-07-22 CVE-2021-3540 Argument Injection or Modification vulnerability in Ivanti Mobileiron
By abusing the 'install rpm info detail' command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core.
network
low complexity
ivanti CWE-88
critical
9.0
2021-07-22 CVE-2021-3198 OS Command Injection vulnerability in Ivanti Mobileiron
By abusing the 'install rpm url' command, an attacker can escape the restricted clish shell on affected versions of Ivanti MobileIron Core.
network
low complexity
ivanti CWE-78
critical
9.0