KeyStore Service Permissions Bypass Vulnerability

KeyStore Service Permissions Bypass Vulnerability

CVE-2017-13236 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

In the KeyStore service, there is a permissions bypass that allows access to protected resources. This could lead to local escalation of privilege with system execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 8.0, 8.1. Android ID: A-68217699.

Learn more about our Cis Benchmark Audit For Google Android.