Bypassing Wi-Fi Configuration Restrictions via Guest Access in Android

Bypassing Wi-Fi Configuration Restrictions via Guest Access in Android

CVE-2016-2457 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:N

server/pm/UserManagerService.java in Wi-Fi in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 allows attackers to bypass intended restrictions on Wi-Fi configuration changes by leveraging guest access, aka internal bug 27411179.

Learn more about our Cis Benchmark Audit For Google Android.