Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Fleet Vulnerable to Windows MDM cross-device command disclosure
Vulnerability Description
Fleet is open source device management software. Prior to 4.81.1, a vulnerability in Fleet's Windows MDM command processing allows a malicious enrolled device to access MDM commands intended for other devices, potentially exposing sensitive configuration data such as WiFi credentials, VPN secrets, and certificate payloads across the entire Windows fleet. Version 4.81.1 patches the issue.
CVSS Information
N/A
Vulnerability Type
对错误会话暴露数据元素
Vulnerability Title
Fleet 安全漏洞
Vulnerability Description
Fleet是Fleet Device Management开源的一个设备管理平台,支持多种操作系统和设备,帮助 IT 和安全团队进行设备管理、漏洞报告、MDM 等操作。 Fleet 4.81.1之前版本存在安全漏洞,该漏洞源于Windows MDM命令处理不当,可能导致恶意设备访问其他设备的MDM命令,泄露敏感配置数据。
CVSS Information
N/A
Vulnerability Type
N/A