iOS Vulnerability: Quicksand

On August 19, 2015 AirWatch partner Appthority released information about a new iOS vulnerability named Quicksand. This vulnerability allows unauthorized access to sensitive information passed as a Managed App Configuration setting. By the time of disclosure, Apple had released iOS 8.4.1 to remediate the vulnerability. AirWatch recommends that end users upgrade to iOS 8.4.1 to protect against Quicksand. AirWatch administrators can use the AirWatch Compliance Engine to identify, notify, and take action on enrolled devices that are running a vulnerable version of iOS. AirWatch also provides enterprise SSO options such as Kerberos support to restrict the inclusion of sensitive information in Managed App Configurations.

Have more questions? Submit a request


Article is closed for comments.