Unrated severityCISA KEVNVD Advisory· Published Jul 7, 2020· Updated Oct 21, 2025
CVE-2020-15505
CVE-2020-15505
Description
A remote code execution vulnerability in MobileIron Core & Connector versions 10.3.0.3 and earlier, 10.4.0.0, 10.4.0.1, 10.4.0.2, 10.4.0.3, 10.5.1.0, 10.5.2.0 and 10.6.0.0; and Sentry versions 9.7.2 and earlier, and 9.8.0; and Monitor and Reporting Database (RDB) version 2.0.0.1 and earlier that allows remote attackers to execute arbitrary code via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- MobileIron/Core & Connectordescription
- Range: <=10.3.0.3, 10.4.0.0, 10.4.0.1, 10.4.0.2, 10.4.0.3, 10.5.1.0, 10.5.2.0, 10.6.0.0
- Range: <=2.0.0.1
Patches
Vulnerability mechanics
References
4- packetstormsecurity.com/files/161097/MobileIron-MDM-Hessian-Based-Java-Deserialization-Remote-Code-Execution.htmlmitrex_refsource_MISC
- cwe.mitre.org/data/definitions/41.htmlmitrex_refsource_MISC
- perchsecurity.com/perch-news/cve-spotlight-mobileiron-rce-cve-2020-15505/mitrex_refsource_MISC
- www.mobileiron.com/en/blog/mobileiron-security-updates-availablemitrex_refsource_MISCx_refsource_CONFIRM
News mentions
1- CVE-2026-10520, CVE-2026-10523 - Multiple critical vulnerabilities affecting Ivanti SentryRapid7 Blog · Jun 10, 2026