An elevation of privilege vulnerability in the Android system (art). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-64211847.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
google android 6.0.1 |
||
google android 5.1.1 |
||
google android 7.1.1 |
||
google android 6.0 |
||
google android 8.0 |
||
google android 7.0 |
||
google android 7.1.2 |
Janus bug leaves APKs vulnerable to poisoning Beware the IDEs of Android: three biggies have vulnerabilities
Researchers say a recently patched vulnerability in Android could leave users vulnerable to attack from signed apps. The vulnerability, dubbed Janus, would allow a malicious application to add bytes of code to the APK or DEX formats used by Android applications without affecting the application's signature. In other words, a scumbag could pack an app with malicious instructions, and still have it read by Android as a trusted piece of software. The problem, say researchers with mobile security fi...