Thursday, January 21, 21:47
Home security NCSC: Fix CVE-2020-15505 RCE Critical Error on MobileIron Platform

NCSC: Fix CVE-2020-15505 RCE Critical Error on MobileIron Platform

The National Cyber ​​Security Center of the United Kingdom (NCSC) issued a warning yesterday urging all agencies to fix the critical CVE-2020-15505 (RCE) remote vulnerability in the MobileIron mobile management platform (MDM).

MobileIron

MDM is a software platform that allows admins to manage remote mobile devices in their organization, including the promotion of applications, updates and the ability to change settings. This management is done from a central location, such as an administrator console running on the organization's server, making it the primary target for intruders.

The NCSC warns that they are aware that hacking teams are actively using MobileIron CVE-2020-1550 vulnerability to compromise various networks in the field of health, local government, logistics and legal sectors.

The NCSC is aware that some Advanced Persistent Threat (APT) groups and some cybercriminals are trying to exploit this vulnerability to compromise their networks. British organizations", States the advisory.

The US Government Security and Infrastructure Agency (CISA) also warned that APT hacking groups are actively using this vulnerability to access various networks. The National Security Agency of USA (NSA) states that CVE-2020-15505 is in the Top-25 of vulnerabilities used by Chinese state hackers.

MobileIron CVE-2020-15505 Vulnerability allows an attacker to remotely execute commands on an MDM server without having to authentication.

MDM servers need to be publicly accessible to manage remote mobile devices - this makes them a very good target for threatening factors.

The vulnerability was discovered and responsibly revealed by security researcher Orange Tsai in March and MobileIron released the patches and an advisory in June.

Shortly afterwards, researchers released a proof-of-concept (PoC) exploit for vulnerabilities that allows remote invaders to execute commands on vulnerable devices.

After that some APT or government groups started using vulnerability in various breached networks.

The UK NCSC strongly urges all organizations that use vulnerable software to implement patches immediately.

The MobileIron versions that are vulnerable to CVE-2020-15505 are the following:

  • 10.3.0.3 and older
  • 10.4.0.0, 10.4.0.1, 10.4.0.2, 10.4.0.3, 10.5.1.0, 10.5.2.0 and 10.6.0.0
  • Sentry versions 9.7.2 and older
  • 9.8.0
  • Database Monitoring and Reporting (RDB) version 2.0.0.1 (and earlier versions)

Information on available patches can be found at Advisory of MobileIron.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Teo Ehc
Teo Ehchttps://www.secnews.gr
Be the limited edition.

LIVE NEWS

Mac: How to see which model you have and when it was released

When you need support for your Mac - or want to install some kind of upgrade - you usually need to know the exact ...
00:02:35

Bill Gates: Will he work with Biden on COVID-19 / climate change?

Microsoft co-founder Bill Gates said on Twitter that he is looking forward to working with the new US President, Joe Biden, and ...

What are the rumors circulating about the iPhone 13?

Apple iPhone 13 will have a redesigned Face ID system that will have a smaller notch at the top of the screen, ...

Biden: How was the political transition in the US captured on social media?

As Joe Biden was sworn in as President of the United States, this important political transition was captured on popular social media. On January 20, ...

CentOS ceases to be supported but RHEL is offered for free

Last month, Red Hat caused a great deal of concern in the Linux world when it announced the discontinuation of CentOS Linux.

Microsoft Office 365 employee passwords leaked online!

A new large-scale phishing campaign targeting global organizations has been found to bypass Microsoft Office 365 Advanced Threat Protection (ATP) and ...

COSMOTE and Microsoft provide new cloud solutions for businesses

COSMOTE and Microsoft expand their cooperation, offering even more advanced and high quality cloud solutions, in large and small ...

Cyber ​​attacks in Eastern Europe are on the rise!

The cyber-attacks that have taken place in many US government agencies and companies in recent months have caused concern in the developing countries of ...

Tesla reduces the prices of the Model 3 in Europe

Tesla has reduced the prices of the Model 3 in many European markets, which reductions could be partly linked ...

iOS, Android, XBox users in the crosshairs of a new malvertising campaign

Recently a new malvertising campaign was discovered that targets users of mobile and other connected devices and uses effective ...