Unauthenticated Registration of Security Certificate on Samsung Mobile Devices (SVE-2017-9659)

Unauthenticated Registration of Security Certificate on Samsung Mobile Devices (SVE-2017-9659)

CVE-2017-18654 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

An issue was discovered on Samsung mobile devices with M(6.0) and N(7.0, 7.1) software. An unauthenticated attacker can register a new security certificate. The Samsung ID is SVE-2017-9659 (September 2017).

Learn more about our Cis Benchmark Audit For Mobile Devices.