CVE-2017-16835

The "Photo,Video Locker-Calculator" application 12.0 for Android has android:allowBackup="true" in AndroidManifest.xml, which allows attackers to obtain sensitive cleartext information via an "adb backup '-f smart.calculator.gallerylock'" command.
Configurations

Configuration 1 (hide)

cpe:2.3:a:photo\,video_locker-calculator_project:photo\,video_locker-calculator:12.0:*:*:*:*:android:*:*

History

21 Nov 2024, 03:17

Type Values Removed Values Added
References () https://www.ds-security.com/2017/11/16/photovideo-locker-calculator-leak-of-sensitive-files/ - Third Party Advisory () https://www.ds-security.com/2017/11/16/photovideo-locker-calculator-leak-of-sensitive-files/ - Third Party Advisory

Information

Published : 2018-02-20 06:29

Updated : 2024-11-21 03:17


NVD link : CVE-2017-16835

Mitre link : CVE-2017-16835

CVE.ORG link : CVE-2017-16835


JSON object : View

Products Affected

photo\,video_locker-calculator_project

  • photo\,video_locker-calculator
CWE
CWE-312

Cleartext Storage of Sensitive Information