Required CVE Record Information
Description
Kony Management (aka Enterprise Mobile Management or EMM) 1.2 and earlier allows remote authenticated users to read (1) arbitrary messages via the messageId parameter to selfservice/managedevice/getMessageBody or (2) requests via the requestId parameter to selfservice/devicemgmt/getDeviceInfoTab.htm.
References 2 Total
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 2 Total
- securityfocus.com: 20150222 CVE-2014-8487: Kony EMM insecurity Direct Object Reference mailing-listx_transferred
- securityfocus.com: 72714 vdb-entryx_transferred