Weak Permissions in Kaspersky Internet Security for Android
CVE-2017-12816
9.8CRITICAL
Key Information:
- Vendor
Kaspersky
- Vendor
- CVE Published:
- 25 August 2017
What is CVE-2017-12816?
In Kaspersky Internet Security for Android version 11.12.4.1622, certain exported activities have insufficient permission settings. This weakness allows potentially harmful applications to gain unauthorized access to the functionalities of Kaspersky’s security product via Android's Inter-Process Communication (IPC). Attackers could exploit this vulnerability to manipulate security features, putting user safety at risk.
Affected Version(s)
Kaspersky Lab Kaspersky Internet Security for Android 11.12.4.1622 Kaspersky Lab Kaspersky Internet Security for Android 11.12.4.1622