High severity7.8NVD Advisory· Published Nov 16, 2017· Updated May 13, 2026

CVE-2017-4931

Description

VMware AirWatch Console 9.x prior to 9.2.0 contains a vulnerability that could allow an authenticated AWC user to add malicious data to an enrolled device's log files. Successful exploitation of this issue could result in an unsuspecting AWC user opening a CSV file which contains malicious content.

Affected products

VMware/Airwatch
cpe:2.3:a:vmware:airwatch:*:*:*:*:*:*:*:*
Range: >=9.0.0,<9.2.0
VMware/VMware AirWatch Console (AWC)v5
Range: 9.x before 9.2.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.vmware.com/us/security/advisories/VMSA-2017-0016.htmlnvdPatchVendor Advisory
www.securityfocus.com/bid/101772nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1039750nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000