Knox SDS IAM and EMM 16.11 on Samsung Mobile Devices: Man-in-the-Middle Attack Allows Unauthorized Application Installation and Data Leakage
CVE-2017-10963 · MEDIUM Severity
AV:N/AC:M/AU:N/C:P/I:N/A:N
In Knox SDS IAM (Identity Access Management) and EMM (Enterprise Mobility Management) 16.11 on Samsung mobile devices, a man-in-the-middle attacker can install any application into the Knox container (without the user's knowledge) by inspecting network traffic from a Samsung server and injecting content at a certain point in the update sequence. This installed application can further leak information stored inside the Knox container to the outside world.
Learn more about our Cis Benchmark Audit For Mobile Devices.