Skip to main content

OS Risk

The OS Risk page presents a comprehensive inventory of all identified iOS and Android risks within the user's system, categorized by Operating System. It also includes the corresponding CVEs linked to each risk.

Mobile-security-console-dashboard-os-risks.png

The window displays a summary of information for both iOS and Android devices at the top.

  • Devices with Vulnerable OS - displays the aggregate count of affected devices. Additionally, it provides a breakdown of the number of devices running vulnerable OS versions, distinguishing between iOS and Android operating systems.

  • Upgradeable Devices - displays the aggregate count of affected devices. Additionally, it provides a breakdown of the count into two categories: iOS devices and Android devices that are capable of being upgraded.

  • Non-Upgradeable Devices - displays the aggregate count of devices impacted. Additionally, it provides a breakdown of the count of iOS and Android devices that cannot be upgraded.

    Note

    To access the Devices page and view a list of devices categorized as Vulnerable, Upgradeable, or Non-Upgradeable, simply click on the number of devices associated with either the iOS or Android platform within any of the three designated areas. The device-specific information, including User, Group, OS Version, and Device ID, is displayed.

In the OS Risk window you will find the following tabs:

  • Common Vulnerabilities and Exposures (CVEs)

  • OS Versions

Common Vulnerabilities and Exposures (CVEs)

These are the fields displayed in the CVEs tab:

  • CVE is the number identified with the risk discovered. Click the three-line triangle to filter the field. Click on the individual CVE to open the detailed description of the specific CVE selected from the National Vulnerability Database.

  • CVE Severity level is either Low, Medium, or Critical.

  • CVE Type is the type that was identified, such as “Elevation of Privilege”.

  • Operating Systems shows if the OS is either iOS or Android.

  • Device Count is the number of devices that this threat affects.

  • Upgradeable is the number of devices that are affected that are upgradeable.

OS Versions

The OS Versions tab displays risk levels for the different operating systems.

Mobile-security-console-os-risk-os-version.png
  • Risk level identifies if the specific risk is Low, High, or Critical.

  • Operating Systems shows whether it is iOS or Android.

  • Version is the version number of either the iOS or Android device that this threat affects or the range of versions.

  • CVE Count identifies the number of CVEs that affect the specific OS version of the iOS or Android devices.

  • Device Count identifies the number of devices that are affected by the specified version.

  • Upgradeable identifies the number of devices that are affected by the identified threat that is upgradeable.

    Note

    To find out detailed information regarding the listed CVE, click the link in the CVE column. The link goes to information for the vulnerability within the National Vulnerability Database.