4 results (0.015 seconds)

CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0

IBM MaaS360 for Android 6.31 through 8.60 is using hard coded credentials that can be obtained by a user with physical access to the device. • https://www.ibm.com/support/pages/node/7166750 https://exchange.xforce.ibmcloud.com/vulnerabilities/290341 • CWE-798: Use of Hard-coded Credentials •

CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0

IBM MaaS360 6.82 could allow a user with pysical access to the device to crash the application which may enable the user to access restricted applications and device settings. IBM X-Force ID: 178505. IBM MaaS360 versión 6.82, podría permitir a un usuario con acceso físico al dispositivo bloquear la aplicación que puede habilitar al usuario para acceder a aplicaciones restringidas y configuraciones del dispositivo. ID de IBM X-Force: 178505. • https://exchange.xforce.ibmcloud.com/vulnerabilities/178505 https://www.ibm.com/support/pages/node/6151773 •

CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0

IBM MaaS360 3.96.62 for iOS could allow an attacker with physical access to the device to obtain sensitive information from the agent outside of the container. IBM X-Force ID: 172705. IBM MaaS360 versión 3.96.62 para iOS, podría permitir a un atacante con acceso físico al dispositivo obtener información confidencial del agente fuera del contenedor. ID de IBM X-Force: 172705. • https://exchange.xforce.ibmcloud.com/vulnerabilities/172705 https://www.ibm.com/support/pages/node/6151767 •

CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0

IBM MaaS360 DTM all versions up to 3.81 does not perform proper verification for user rights of certain applications which could disclose sensitive information. IBM X-Force ID: 127412. IBM MaaS360 DTM en todas las versiones hasta la 3.81 no realiza correctamente la verificación para derechos de usuario de ciertas aplicaciones. Esto podría divulgar información sensible. IBM X-Force ID: 127412. • http://www.ibm.com/support/docview.wss?uid=swg22006985 http://www.securityfocus.com/bid/100415 https://exchange.xforce.ibmcloud.com/vulnerabilities/127412 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •