Vulnerability: Lack of PKCS7 Padding Support in Android Crypto Storage APIs

Vulnerability: Lack of PKCS7 Padding Support in Android Crypto Storage APIs

CVE-2017-14906 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

In Android before 2018-01-05 on Qualcomm Snapdragon IoT, Snapdragon Mobile MDM9206, MDM9607, MSM8909W, SD 210/SD 212/SD 205, SD 410/12, PKCS7 padding is not supported by the crypto storage APIs.

Learn more about our Cis Benchmark Audit For Google Android.