Описание
The Norton App Lock prior to version 1.3.0.13 can be susceptible to an authentication bypass exploit. In this type of circumstance, the exploit can allow the user to kill the app to prevent it from locking the device, thereby allowing the individual to gain device access.
Ссылки
- Third Party AdvisoryVDB Entry
- MitigationVendor Advisory
- Third Party AdvisoryVDB Entry
- MitigationVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.3.0.13 (исключая)
cpe:2.3:a:symantec:norton_app_lock:*:*:*:*:*:*:*:*
EPSS
Процентиль: 38%
0.00167
Низкий
6.7 Medium
CVSS3
7.2 High
CVSS2
Дефекты
CWE-287
Связанные уязвимости
CVSS3: 6.7
github
больше 3 лет назад
The Norton App Lock prior to version 1.3.0.13 can be susceptible to an authentication bypass exploit. In this type of circumstance, the exploit can allow the user to kill the app to prevent it from locking the device, thereby allowing the individual to gain device access.
EPSS
Процентиль: 38%
0.00167
Низкий
6.7 Medium
CVSS3
7.2 High
CVSS2
Дефекты
CWE-287