CVE-2015-9232 in Good Technologyinformación

Resumen

por MITRE

The Good for Enterprise application 3.0.0.415 for Android does not use signature protection for its Authentication Delegation API intent. Also, the Good Dynamic application activation process does not attempt to detect malicious activation attempts involving modified names beginning with a com.good.gdgma substring. Consequently, an attacker could obtain access to intranet data. This issue is only relevant in cases where the user has already downloaded a malicious Android application.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservar

2017-09-20

Divulgación

2017-09-20

Moderación

aceptado

Artículo

VDB-106904

CPE

listo

EPSS

0.00136

KEV

no

Actividades

muy bajo

Sector

Police, Homeoffice

Fuentes

MITREhttps://www.cve.org/CVERecord?id=CVE-2015-9232
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2015-9232
CVE Detailshttps://www.cvedetails.com/cve/CVE-2015-9232/

AnteriorVisión De ConjuntoPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!