01642 06 11 11 Arrange Call

Hardcoded RSA Private Keys in Cellebrite UFED: A Forensic Extraction Vulnerability

CVE-2020-11723 · MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CVE-2020-11723

Cellebrite UFED 5.0 through 7.29 uses four hardcoded RSA private keys to authenticate to the ADB daemon on target devices. Extracted keys can be used to place evidence onto target devices when performing a forensic extraction.

Learn more about our Web Application Penetration Testing UK.