Sensitive Data Exposure

This document provides information about the different sensitive data exposure detected in Mobile Device Manager Plus MSP and provides the resolution to secure the server from these vulnerabilities

 

Vulnerability Description Detected by Fix available in build Fix released on
Notification about recently released updates was available on the web console before login Steven Perreau 92951 Jun 26, 2020
Sensitive data exposed on the iOS Agent log files Zoho Corp. Agent version: 9.2.307 Sep 03, 2018

Resolution

The fixes for the above mentioned vulnerabilities were released in the mentioned build numbers. If your MDM MSP server is affected by the vulnerability or is running a version below the build number mentioned, download and upgrade your Mobile Device Manager Plus MSP server to the latest build to resolve the issues.

For more updates on security fixes, follow our Vulnerability Notifications forums.