CVE-2020-35137

CVE-2020-35137

The MobileIron agents through 2021-03-22 for Android and iOS contain a hardcoded API key, used to communicate with the MobileIron SaaS discovery API, as demonstrated by Mobile@Work (aka com.mobileiron). The key is in com/mobileiron/registration/RegisterActivity.java and can be used for api/v1/gateway/customers/servers requests.

Source: CVE-2020-35137

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다