Vulnerability Description
The VMware Content Locker for iOS prior to 4.14 contains a data protection vulnerability in the SQLite database. This vulnerability relates to unencrypted filenames and associated metadata in SQLite database for the Content Locker.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Vmware | Workspace One | < 4.14 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/105367Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1041604Third Party AdvisoryVDB Entry
- https://www.vmware.com/security/advisories/VMSA-2018-0023.htmlVendor Advisory
- http://www.securityfocus.com/bid/105367Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1041604Third Party AdvisoryVDB Entry
- https://www.vmware.com/security/advisories/VMSA-2018-0023.htmlVendor Advisory
FAQ
What is CVE-2018-6976?
CVE-2018-6976 is a vulnerability with a CVSS score of 5.3 (MEDIUM). The VMware Content Locker for iOS prior to 4.14 contains a data protection vulnerability in the SQLite database. This vulnerability relates to unencrypted filenames and associated metadata in SQLite d...
How severe is CVE-2018-6976?
CVE-2018-6976 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-6976?
Check the references section above for vendor advisories and patch information. Affected products include: Vmware Workspace One.