Vulnerability in Android Setup Wizard Allows Settings Modification and Reset Protection Bypass

Vulnerability in Android Setup Wizard Allows Settings Modification and Reset Protection Bypass

CVE-2015-6643 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Setup Wizard in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows physically proximate attackers to modify settings or bypass a reset protection mechanism via unspecified vectors, aka internal bug 25290269.

Learn more about our Cis Benchmark Audit For Google Android.