Vulnerability Description
The Norton App Lock prior to version 1.3.0.13 can be susceptible to an authentication bypass exploit. In this type of circumstance, the exploit can allow the user to kill the app to prevent it from locking the device, thereby allowing the individual to gain device access.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Norton App Lock | < 1.3.0.13 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/103377Third Party AdvisoryVDB Entry
- https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securiMitigationVendor Advisory
- http://www.securityfocus.com/bid/103377Third Party AdvisoryVDB Entry
- https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securiMitigationVendor Advisory
FAQ
What is CVE-2017-15534?
CVE-2017-15534 is a vulnerability with a CVSS score of 6.7 (MEDIUM). The Norton App Lock prior to version 1.3.0.13 can be susceptible to an authentication bypass exploit. In this type of circumstance, the exploit can allow the user to kill the app to prevent it from lo...
How severe is CVE-2017-15534?
CVE-2017-15534 has been rated MEDIUM with a CVSS base score of 6.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-15534?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Norton App Lock.