Products

Solutions

Company

Book A Live Demo

CVE-2018-6968 : Security Advisory and Response

Learn about CVE-2018-6968 affecting VMware AirWatch Agent for Android and Windows Mobile. Find out the impact, affected versions, and mitigation steps to secure your systems.

A security flaw has been identified in the VMware AirWatch Agent for Android versions earlier than 8.2 and AirWatch Agent for Windows Mobile versions earlier than 6.5.2. This vulnerability affects the real-time File Manager capabilities, potentially enabling unauthorized access to create and run files in publicly accessible directories.

Understanding CVE-2018-6968

This CVE involves a remote code execution vulnerability in the VMware AirWatch Agent for Android and Windows Mobile.

What is CVE-2018-6968?

The vulnerability allows a malicious administrator to create and execute files in the Agent sandbox and other accessible directories, compromising system integrity.

The Impact of CVE-2018-6968

Exploiting this flaw could lead to unauthorized access and manipulation of files, posing a significant security risk to affected systems.

Technical Details of CVE-2018-6968

This section provides detailed technical information about the vulnerability.

Vulnerability Description

The VMware AirWatch Agent for Android and Windows Mobile versions prior to 8.2 and 6.5.2, respectively, contain a remote code execution vulnerability in the real-time File Manager capabilities.

Affected Systems and Versions

Product: AirWatch Agent

Vendor: VMware

AirWatch Agent for Android prior to 8.2

AirWatch Agent for Windows Mobile prior to 6.5.2

Exploitation Mechanism

The vulnerability allows unauthorized administrators to create and execute files in the Agent sandbox and publicly accessible directories, such as those on the SD card.

Mitigation and Prevention

Protecting systems from CVE-2018-6968 requires immediate action and long-term security practices.

Immediate Steps to Take

Update AirWatch Agent for Android to version 8.2 or later.

Update AirWatch Agent for Windows Mobile to version 6.5.2 or later.

Monitor system activities for any suspicious file creation or execution.

Long-Term Security Practices

Implement access controls to restrict unauthorized file operations.

Conduct regular security audits and vulnerability assessments.

Educate users on safe file handling practices.

Patching and Updates

Regularly check for security updates and patches from VMware.

Apply patches promptly to mitigate the risk of exploitation.

CVE-2018-6968 : Security Advisory and Response

Understanding CVE-2018-6968

What is CVE-2018-6968?

The Impact of CVE-2018-6968

Technical Details of CVE-2018-6968

Vulnerability Description

Affected Systems and Versions

Exploitation Mechanism

Mitigation and Prevention

Immediate Steps to Take

Long-Term Security Practices

Patching and Updates

Popular CVEs

CVE Id

Published Date

Is your System Free of Underlying Vulnerabilities?
Find Out Now

CVE-2018-6968 : Security Advisory and Response

.css-lczsrn{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:24px;font-weight:700;margin-top:1rem;font-family:sans-serif;}Understanding CVE-2018-6968

.css-ru2q5j{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:1.2rem;font-weight:700;margin-top:1rem;margin-bottom:0rem;font-family:sans-serif;}What is CVE-2018-6968?

The Impact of CVE-2018-6968

Technical Details of CVE-2018-6968

Vulnerability Description

Affected Systems and Versions

Exploitation Mechanism

Mitigation and Prevention

Immediate Steps to Take

Long-Term Security Practices

Patching and Updates

Popular CVEs

CVE Id

Published Date

Is your System Free of Underlying Vulnerabilities? Find Out Now

Understanding CVE-2018-6968

What is CVE-2018-6968?

Is your System Free of Underlying Vulnerabilities?
Find Out Now