First published: Wed Dec 13 2017(Updated: )
Prior to 4.4.1.10, the Norton Family Android App can be susceptible to an Information Disclosure issue. Information disclosure is a very common issue that attackers will attempt to exploit as a first pass across the application. As they probe the application they will take note of anything that may seem out of place or any bit of information they can use to their advantage such as error messages, system information, user data, version numbers, component names, URL paths, or even simple typos and misspellings.
Credit: secure@symantec.com
Affected Software | Affected Version | How to fix |
---|---|---|
Symantec Norton Family | <4.4.1.10 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2017-15530 is a vulnerability found in the Norton Family Android App, prior to version 4.4.1.10, that can lead to an information disclosure issue.
An information disclosure issue can allow attackers to obtain sensitive information from the Norton Family Android App, potentially compromising user privacy and security.
CVE-2017-15530 has a severity rating of 3.3, which is classified as low.
The CWE for CVE-2017-15530 is CWE-200, which is the classification for information exposure.
To fix the vulnerability, it is recommended to update the Norton Family Android App to version 4.4.1.10 or later, as provided by Symantec.