RSS   Vulnerabilities for
'Knox identity access management'
   RSS

2018-02-20
 
CVE-2017-10963

CWE-74
 

 
In Knox SDS IAM (Identity Access Management) and EMM (Enterprise Mobility Management) 16.11 on Samsung mobile devices, a man-in-the-middle attacker can install any application into the Knox container (without the user's knowledge) by inspecting network traffic from a Samsung server and injecting content at a certain point in the update sequence. This installed application can further leak information stored inside the Knox container to the outside world.

 

 >>> Vendor: Samsung 63 Products
Ml-85g gdi printer driver
Ml-85p printer driver
Scx-4200 driver
Dvr shr2040
Data management server
Series 5 chromebook
Chromebox 3
Series 5 550 chromebook
Net-i viewer
Galaxy s
KIES
Printer firmware
Kies air
Galaxy note
Galaxy note 2
Galaxy s2
Samsungdive
Ps50c7700 television
Ps50c7700 television firmware
Smart viewer
DVR
Shr-5082
Shr-5162
Ipolis device manager
Findmymobile
Mobile
Smartviewer
Samsung security manager
Sbeam
Galaxy s5
Galaxy s6
Web viewer
Samsung mobile
Exynos fimg2d driver
KNOX
Exynos fimg2d
Exynos 5800
Galaxy app
Samsung account app
X12 firmware
X10p firmware
Nt14u firmware
X14j firmware
X14h firmware
M288ofw firmware
Galaxy s6 firmware
Galaxy note 3 firmware
Galaxy s4 mini firmware
Galaxy s4 firmware
Galaxy s4 mini lte firmware
Syncthru 6
Galaxy s6 edge firmware
Magician
Srn 1670d firmware
Srn 472s firmware
Srn 1000 firmware
Srn 470d firmware
850 pro firmware
Pm851 firmware
Internet browser
Knox enterprise mobility management
Knox identity access management
Display solutions


Copyright 2018, cxsecurity.com

 

Back to Top