Knox SDS IAM and EMM 16.11 on Samsung Mobile Devices: Man-in-the-Middle Attack Allows Unauthorized Application Installation and Data Leakage

Knox SDS IAM and EMM 16.11 on Samsung Mobile Devices: Man-in-the-Middle Attack Allows Unauthorized Application Installation and Data Leakage

CVE-2017-10963 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

In Knox SDS IAM (Identity Access Management) and EMM (Enterprise Mobility Management) 16.11 on Samsung mobile devices, a man-in-the-middle attacker can install any application into the Knox container (without the user's knowledge) by inspecting network traffic from a Samsung server and injecting content at a certain point in the update sequence. This installed application can further leak information stored inside the Knox container to the outside world.

Learn more about our Cis Benchmark Audit For Mobile Devices.