Denial of Service Vulnerability in Android Setup Wizard Allows Local Attackers to Require Google Account Sign-In After Factory Reset

Denial of Service Vulnerability in Android Setup Wizard Allows Local Attackers to Require Google Account Sign-In After Factory Reset

CVE-2017-0498 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:N/A:P

A denial of service vulnerability in Setup Wizard could allow a local attacker to require Google account sign-in after a factory reset. This issue is rated as Moderate because it may require a factory reset to repair the device. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-30352311.

Learn more about our Cis Benchmark Audit For Google Android.