The Norton App Lock prior to version 1.3.0.13 can be susceptible to an authentication bypass exploit. In this type of circumstance, the exploit can allow the user to kill the app to prevent it from locking the device, thereby allowing the individual to gain device access.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/103377 | Third Party Advisory VDB Entry |
https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20180326_00 | Mitigation Vendor Advisory |
Configurations
History
No history.
Information
Published : 2018-03-26 16:29
Updated : 2024-02-28 16:25
NVD link : CVE-2017-15534
Mitre link : CVE-2017-15534
CVE.ORG link : CVE-2017-15534
JSON object : View
Products Affected
symantec
- norton_app_lock
CWE
CWE-287
Improper Authentication