Denial of Service Vulnerability in IBM MaaS360 Mobile Device Management
CVE-2020-4353

4.6MEDIUM

Key Information:

Vendor: IBM
Status: Maas360
Vendor: CVE Published:; 23 April 2020

Summary

IBM MaaS360 version 6.82 is susceptible to a Denial of Service attack, which can be triggered by a user with physical access to the device. If exploited, this vulnerability could lead to the application crashing, allowing the user to bypass restrictions and potentially gain access to sensitive applications and device settings. This poses significant security risks for organizations relying on MaaS360 for mobile device management.

Affected Version(s)

MaaS360 6.82

References

https://www.ibm.com/support/pages/node/6151773

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/178505

vdb-entryx_refsource_XF

CVSS V3.1

Score:

4.6

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 23, 2020
Vulnerability Reserved
Dec 30, 2019