Bypassing Factory Reset Protection in Android 6.x and 7.0

Bypassing Factory Reset Protection in Android 6.x and 7.0

CVE-2016-3889 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Android 6.x before 2016-09-01 and 7.0 before 2016-09-01 allows physically proximate attackers to bypass the Factory Reset Protection protection mechanism by accessing (1) an external tile from a system application, (2) the help feature, or (3) the Settings application during a pre-setup stage, aka internal bug 29194585.

Learn more about our External Network Penetration Testing.