Insecure Package Validation in Samsung Secure Folder on N(7.x) Software (SVE-2017-10932)

Insecure Package Validation in Samsung Secure Folder on N(7.x) Software (SVE-2017-10932)

CVE-2018-9142 · HIGH Severity

AV:N/AC:H/AU:N/C:C/I:C/A:C

On Samsung mobile devices with N(7.x) software, attackers can install an arbitrary APK in the Secure Folder SD Card area because of faulty validation of a package signature and package name, aka SVE-2017-10932.

Learn more about our Cis Benchmark Audit For Mobile Devices.