CVE-2014-1409
published 2020-01-08CVE-2014-1409: MobileIron VSP versions prior to 5.9.1 and Sentry versions prior to 5.0 have an authentication bypass vulnerability due to an XML file with obfuscated passwords
PriorityP261critical9.1CVSS 3.1
AVNACLPRNUINSUCHIHAN
EPSS
4.05%
89.4th percentile
MobileIron VSP versions prior to 5.9.1 and Sentry versions prior to 5.0 have an authentication bypass vulnerability due to an XML file with obfuscated passwords
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mobileiron | sentry | < 5.0 | 5.0 |
| mobileiron | virtual_smartphone_platform | < 5.9.1 | 5.9.1 |
Detection & IOCsextracted from sources · hover to see the quote
- →Authentication bypass vulnerability exists in MobileIron VSP versions prior to 5.9.1 and Sentry versions prior to 5.0 due to an XML file containing obfuscated (not properly protected) passwords — monitor for unauthorized access attempts or unexpected XML file reads on these appliances ↗
- ·Vulnerability is classified under CWE-91 (XML Injection) with a CVSS Base Score of 9.1 (CRITICAL); the root cause is obfuscated (not encrypted) passwords stored in an XML file, meaning credential exposure is possible without authentication ↗
- ·Affected products: MobileIron VSP (Virtual Smartphone Platform) < 5.9.1 and MobileIron Sentry < 5.0; upgrade to at least these versions to remediate ↗
CVSS provenance
nvdv3.19.1CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
nvdv2.06.4MEDIUMAV:N/AC:L/Au:N/C:P/I:P/A:N
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ivanti
Ivanti Security Advisory: CVE-2014-1409
vendor_ivanti·2020-01-08·CVSS 9.1
CVE-2014-1409 [CRITICAL] CWE-91 Ivanti Security Advisory: CVE-2014-1409
Ivanti Security Advisory: CVE-2014-1409
MobileIron VSP versions prior to 5.9.1 and Sentry versions prior to 5.0 have an authentication bypass vulnerability due to an XML file with obfuscated passwords
CVE IDs: CVE-2014-1409
CVSS Base Score: 9.1
Severity: CRITICAL
CWEs: CWE-91
GHSA
GHSA-j67q-cq4q-rghp: MobileIron VSP versions prior to 5
ghsa_unreviewed·2022-05-17
CVE-2014-1409 [MEDIUM] GHSA-j67q-cq4q-rghp: MobileIron VSP versions prior to 5
MobileIron VSP versions prior to 5.9.1 and Sentry versions prior to 5.0 have an authentication bypass vulnerability due to an XML file with obfuscated passwords
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://seclists.org/fulldisclosure/2014/Apr/21https://exchange.xforce.ibmcloud.com/vulnerabilities/92351https://packetstormsecurity.com/files/cve/CVE-2014-1409http://seclists.org/fulldisclosure/2014/Apr/21https://exchange.xforce.ibmcloud.com/vulnerabilities/92351https://packetstormsecurity.com/files/cve/CVE-2014-1409
2020-01-08
Published