CVE-2017-4931

CVE Database · CVE-2017-4931

CVE-2017-4931

· N/AModified

CVSS v3.1

N/A

EPSS

1.26%

Published

Nov 16, 2017

Modified

May 12, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

VMware AirWatch Console 9.x prior to 9.2.0 contains a vulnerability that could allow an authenticated AWC user to add malicious data to an enrolled device's log files. Successful exploitation of this issue could result in an unsuspecting AWC user opening a CSV file which contains malicious content.

Weaknesses (CWE)

CWE-20

Affected Products (1)

vmware · airwatch (up to 9.2.0)vulnerable

References (6)

http://www.securityfocus.com/bid/101772

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1039750

Third Party AdvisoryVDB Entry

https://www.vmware.com/us/security/advisories/VMSA-2017-0016.html

PatchVendor Advisory

http://www.securityfocus.com/bid/101772

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1039750

Third Party AdvisoryVDB Entry

https://www.vmware.com/us/security/advisories/VMSA-2017-0016.html

KEV Catalog EPSS Scores Vendors All CVEs