The UK National Cyber Security Centre issued an alert yesterday, prompting all organizations to patch the critical vulnerability in MobileIron mobile device management (MDM) systems. MDM is a software platform that allows administrators to remotely manage mobile devices in their organization, including the pushing out of apps, updates, and the ability to change settings. The US Cybersecurity and Infrastructure Agency (CISA) has also warned that APT hacking groups are actively utilizing this vulnerability to gain access to networks. The NSA states that CVE-2020-15505 is in the top 25 vulnerabilities used by Chinese state-sponsored hackers.
Source: https://www.bleepingcomputer.com/news/security/uk-urges-orgs-to-patch-critical-mobileiron-cve-2020-15505-rce-bug/