Vulnerability Description
Prior to 4.4.1.10, the Norton Family Android App can be susceptible to an Information Disclosure issue. Information disclosure is a very common issue that attackers will attempt to exploit as a first pass across the application. As they probe the application they will take note of anything that may seem out of place or any bit of information they can use to their advantage such as error messages, system information, user data, version numbers, component names, URL paths, or even simple typos and misspellings.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Norton Family | < 4.4.1.10 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/102120Third Party AdvisoryVDB Entry
- https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securiVendor Advisory
- http://www.securityfocus.com/bid/102120Third Party AdvisoryVDB Entry
- https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securiVendor Advisory
FAQ
What is CVE-2017-15530?
CVE-2017-15530 is a vulnerability with a CVSS score of 3.3 (LOW). Prior to 4.4.1.10, the Norton Family Android App can be susceptible to an Information Disclosure issue. Information disclosure is a very common issue that attackers will attempt to exploit as a first ...
How severe is CVE-2017-15530?
CVE-2017-15530 has been rated LOW with a CVSS base score of 3.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-15530?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Norton Family.