CVE: CVE-2017-0492

Export to Word

An elevation of privilege vulnerability in the System UI could enable a local malicious application to create a UI overlay covering the entire screen. This issue is rated as Moderate because it is a local bypass of user interaction requirements that would normally require either user initiation or user permission. Product: Android. Versions: 7.1.1. Android ID: A-30150688.

Threat-Mapped Scoring

Score: 1.8

Priority: P4 - Informational (Low)

S9 – Sabotage of System/App

EPSS

Score: 0.00084
Percentile: 0.25371

CVSS Scoring

CVSS v3.0 Score: 5.5

Severity: MEDIUM

Mapped CWE(s)

CWE-1021 : Improper Restriction of Rendered UI Layers or Frames

All CAPEC(s)

CAPEC-103: Clickjacking
CAPEC-181: Flash File Overlay
CAPEC-222: iFrame Overlay
CAPEC-504: Task Impersonation
CAPEC-506: Tapjacking
CAPEC-587: Cross Frame Scripting (XFS)
CAPEC-654: Credential Prompt Impersonation

CAPEC(s) with Mapped TTPs

CAPEC-504: Task Impersonation
Mapped TTPs:
- T1036.004 : Masquerade Task or Service
CAPEC-654: Credential Prompt Impersonation
Mapped TTPs:
- T1056 : Input Capture
- T1548.004 : Elevated Execution with Prompt

Mapped ATT&CK TTPs

T1036.004 : Masquerade Task or Service
Kill Chain: defense-evasion
T1056 : Input Capture
Kill Chain: collection
T1548.004 : Elevated Execution with Prompt
Kill Chain: privilege-escalation

Malware

APTs Threat Group Associations

Campaigns

APT41 DUST
SolarWinds Compromise
RedDelta Modified PlugX Infection Chain Operations
Versa Director Zero Day Exploitation
Frankenstein
Leviathan Australian Intrusions
C0017
2022 Ukraine Electric Power Attack
KV Botnet Activity

Affected Products

cpe:2.3:o:google:android:7.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:7.1.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:7.1.1:*:*:*:*:*:*:*

← Back to Home