GCVE - cpe:2.3:a:mobileiron:sentry:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:mobileiron:sentry:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Mobileiron (`6be1ac5b-ceca-5f20-bca1-c33c3b0ac3c6`)
Product	Sentry (`e495071b-b9da-561f-9861-5dbbf534b0fb`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-15507`	vulnerable	2026-06-08 05:19:26.015368	Details available An arbitrary file reading vulnerability in MobileIron Core versions 10.3.0.3 and earlier, 10.4.0.0, 10.4.0.1, 10.4.0.2, 10.4.0.3, 10.5.1.0, 10.5.2.0 and 10.6.0.0 that allows remote attackers to read files on the system via unspecified vectors. Published: 2020-07-07T01:42:44.000Z Updated: 2024-08-04T13:15:20.702Z Open on db.gcve.eu Reference links https://www.mobileiron.com/en/blog/mobileiron-security-updates-available https://www.mobileiron.com/en/blog/mobileiron-security-updates-available	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-15506`	vulnerable	2026-06-08 05:19:26.014642	Details available An authentication bypass vulnerability in MobileIron Core & Connector versions 10.3.0.3 and earlier, 10.4.0.0, 10.4.0.1, 10.4.0.2, 10.4.0.3, 10.5.1.0, 10.5.2.0 and 10.6.0.0 that allows remote attackers to bypass authentication mechanisms via unspecified vectors. Published: 2020-07-07T01:43:13.000Z Updated: 2024-08-04T13:15:20.863Z Open on db.gcve.eu Reference links https://www.mobileiron.com/en/blog/mobileiron-security-updates-available https://www.mobileiron.com/en/blog/mobileiron-security-updates-available	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-15505`	vulnerable	2026-06-08 05:19:26.011892	Details available A remote code execution vulnerability in MobileIron Core & Connector versions 10.3.0.3 and earlier, 10.4.0.0, 10.4.0.1, 10.4.0.2, 10.4.0.3, 10.5.1.0, 10.5.2.0 and 10.6.0.0; and Sentry versions 9.7.2 and earlier, and 9.8.0; and Monitor and Reporting Database (RDB) version 2.0.0.1 and earlier that allows remote attackers to execute arbitrary code via unspecified vectors. Published: 2020-07-07T01:43:52.000Z Updated: 2025-10-21T23:35:41.248Z Open on db.gcve.eu Reference links https://www.mobileiron.com/en/blog/mobileiron-security-updates-available https://www.mobileiron.com/en/blog/mobileiron-security-updates-available https://perchsecurity.com/perch-news/cve-spotlight-mobileiron-rce-cve-2020-15505/ http://packetstormsecurity.com/files/161097/MobileIron-MDM-Hessian-Based-Java-Deserialization-Remote-Code-Execution.html https://cwe.mitre.org/data/definitions/41.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-1409`	vulnerable	2026-06-08 05:05:24.524478	Details available MobileIron VSP versions prior to 5.9.1 and Sentry versions prior to 5.0 have an authentication bypass vulnerability due to an XML file with obfuscated passwords Published: 2020-01-08T15:29:10.000Z Updated: 2024-08-06T09:42:35.307Z Open on db.gcve.eu Reference links http://seclists.org/fulldisclosure/2014/Apr/21 https://exchange.xforce.ibmcloud.com/vulnerabilities/92351 https://packetstormsecurity.com/files/cve/CVE-2014-1409	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-7287`	vulnerable	2026-06-08 05:05:09.434183	Details available MobileIron VSP < 5.9.1 and Sentry < 5.0 has an insecure encryption scheme. Published: 2020-02-13T22:09:38.000Z Updated: 2024-08-06T18:01:20.358Z Open on db.gcve.eu Reference links http://seclists.org/fulldisclosure/2014/Apr/21 https://www.securityfocus.com/archive/1/531713	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.