CVE-2017-4896

EPSS 0.3%

Vexday Risk Score

3Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 0.3%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

10 May 2017Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

Airwatch Inbox for Android contains a vulnerability that may allow a rooted device to decrypt the local data used by the application. Successful exploitation of this issue may result in an unauthorized disclosure of confidential data.

Affected products

VMware · Airwatch Console VMware · Airwatch Inbox

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://www.securityfocus.com/bid/95889 http://www.securitytracker.com/id/1037738 http://www.vmware.com/us/security/advisories/VMSA-2017-0001.html