VMSA-2018-0024.1
VMware Workspace ONE Unified Endpoint Management Console (AirWatch Console) update resolves SAML authentication bypass vulnerability
VMware Security Advisory
1. Summary
VMware Workspace ONE Unified Endpoint Management Console (AirWatch Console) updates resolve SAML authentication bypass vulnerability
2. Relevant Products
- VMware Workspace ONE Unified Endpoint Management Console (AirWatch Console)
3. Problem Description
The VMware Workspace ONE Unified Endpoint Management Console (AirWatch Console) contains a SAML authentication bypass vulnerability which can be leveraged during device enrollment. This vulnerability may allow for a malicious actor to impersonate an authorized SAML session if certificate-based authentication is enabled. This vulnerability is also relevant if certificate-based authentication is not enabled, but the outcome of exploitation is limited to an information disclosure (Important Severity) in those cases.
The Common Vulnerabilities and Exposures project has assigned the identifier CVE-2018-6979 to this issue.
Column 5 of the following table lists the action required to remediate the vulnerability in each release, if a solution is available.
| VMware Product | Product Version | Running On | Severity | Replace_with/Apply_Patch | Mitigation/Workaround |
|---|---|---|---|---|---|
| AirWatch Console |
9.7.x | Any | Critical | 9.7.0.3 or above | 360010178013 |
| AirWatch Console | 9.6.x | Any | Critical | 9.6.0.7 or above | 360010178013 |
| AirWatch Console | 9.5.x | Any | Critical | 9.5.0.16 or above | 360010178013 |
| AirWatch Console | 9.4.x | Any | Critical | 9.4.0.22 or above | 360010178013 |
| AirWatch Console | 9.3.x | Any | Critical | 9.3.0.25 or above | 360010178013 |
| AirWatch Console | 9.2.x | Any | Critical | 9.2.3.27 or above | 360010178013 |
| AirWatch Console | 9.1.x | Any | Critical | 9.1.5.6 or above | 360010178013 |
4. Solution
Please review the patch/release notes for your product and version and verify the checksum of your downloaded file.
VMware Workspace ONE Unified Endpoint Management Console 9.7.x
Downloads and Documentation:
https://resources.workspaceone.com/view/rnvtjd8jltpdhpt663n2/en
VMware Workspace ONE Unified Endpoint Management Console 9.6.x
Downloads and Documentation:
https://resources.workspaceone.com/view/5nzwmkccx2dfbfyw9977/en
VMware Workspace ONE Unified Endpoint Management Console 9.5.x
Downloads and Documentation:
https://resources.workspaceone.com/view/3rhqhqd98nymx33f4shd/en
VMware Workspace ONE Unified Endpoint Management Console 9.4.x
Downloads and Documentation:
https://resources.workspaceone.com/view/q9fsfgs6d23mvtkpm22j/en
VMware Workspace ONE Unified Endpoint Management Console 9.3.x
Downloads and Documentation:
https://resources.workspaceone.com/view/7t25rz3pd8sgzq3vqztx/en
VMware Workspace ONE Unified Endpoint Management Console 9.2.x
Downloads and Documentation: https://resources.workspaceone.com/view/kb7yzw7hbgyrygjvhmlh/en
VMware Workspace ONE Unified Endpoint Management Console 9.1.x
Downloads and Documentation:
https://resources.workspaceone.com/save/nnqxxqyqt8vmn54mnd8v/en
6. Change log
2018-10-04 - VMSA-2018-0024: Initial security advisory.
2018-10-04 - VMSA-2018-0024.1: Updated advisory with the correct fixed versions of VMware Workspace ONE Unified Endpoint Management Console for 9.7.x, 9.6.x, 9.5.x, 9.4.x, and 9.2.x release lines.
7. Contact
E-mail list for product security notifications and announcements:
https://lists.vmware.com/cgi-bin/mailman/listinfo/security-announce
This Security Advisory is posted to the following lists:
security-announce@lists.vmware.com
bugtraq@securityfocus.com
fulldisclosure@seclists.org
E-mail: security@vmware.com
PGP key at:
VMware Security Advisories
https://www.vmware.com/security/advisories
VMware Security Response Policy
https://www.vmware.com/support/policies/security_response.html
VMware Lifecycle Support Phases
https://www.vmware.com/support/policies/lifecycle.html
VMware Security & Compliance Blog
https://blogs.vmware.com/security
Copyright 2018 VMware Inc. All rights reserved.