Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The MobileIron agents through 2021-03-22 for Android and iOS contain a hardcoded encryption key, used to encrypt the submission of username/password details during the authentication process, as demonstrated by Mobile@Work (aka com.mobileiron). The key is in the com/mobileiron/common/utils/C4928m.java file. NOTE: It has been asserted that there is no causality or connection between credential encryption and the MiTM attack
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MobileIron agents 信任管理问题漏洞
Vulnerability Description
MobileIron agents是美国MobileIron公司的一个应用软件。用于MobileIron代理。 MobileIron agents through 2021-03-22 存在信任管理问题漏洞,该漏洞源于包含一个硬编码的加密密钥,该密钥用于在身份验证过程中对用户名/密码详细信息的提交进行加密。
CVSS Information
N/A
Vulnerability Type
N/A