VMware resolves vulnerabilities in AirWatch and Content Locker

VMware issued a security update (VMSA-2018-0023) for AirWatch Agent and VMware Content Locker for iOS that resolves data protection vulnerabilities. 

The AirWatch Agent data protection vulnerability (CVE-2018-6975) relates to files and keychain entries in the Agent not being encrypted.

The Content Locker vulnerability (CVE-2018-6976) relates to unencrypted filenames and associated metadata in SQLite database for the Content Locker.

Leave a Reply