CVE-2016-1920

Samsung KNOX 1.0.0 uses the shared certificate on Android, which allows local users to conduct man-in-the-middle attacks as demonstrated by installing a certificate and running a VPN service.
Configurations

Configuration 1 (hide)

cpe:2.3:a:samsung:knox:1.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2017-01-27 20:59

Updated : 2024-02-04 19:11


NVD link : CVE-2016-1920

Mitre link : CVE-2016-1920

CVE.ORG link : CVE-2016-1920


JSON object : View

Products Affected

samsung

  • knox
CWE
CWE-284

Improper Access Control