CVE-2017-12816 — Incorrect Permission Assignment in LAB Kaspersky Internet Security FOR Android 11.12.4.1622
Severity
9.8CRITICALNVD
EPSS
0.4%
top 41.85%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedAug 25
Latest updateMay 13
Description
In Kaspersky Internet Security for Android 11.12.4.1622, some of application exports activities have weak permissions, which might be used by a malware application to get unauthorized access to the product functionality by using Android IPC.
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9
Affected Packages2 packages
▶CVEListV5kaspersky_lab/kaspersky_lab_kaspersky_internet_security_for_android_11.12.4.1622Kaspersky Lab Kaspersky Internet Security for Android 11.12.4.1622