VMware resolves vulnerabilities in AirWatch and Content Locker

By / / Security Updates & Patches, Vulnerabilities & Exploits / Airwatch, CVE-2018-6975, CVE-2018-6976, iOS, VMware

VMware issued a security update (VMSA-2018-0023) for AirWatch Agent and VMware Content Locker for iOS that resolves data protection vulnerabilities. 

The AirWatch Agent data protection vulnerability (CVE-2018-6975) relates to files and keychain entries in the Agent not being encrypted.

The Content Locker vulnerability (CVE-2018-6976) relates to unencrypted filenames and associated metadata in SQLite database for the Content Locker.