Android 4.0 through 4.3 allows attackers to bypass intended access restrictions and remove device locks via a crafted application that invokes the updateUnlockMethodAndFinish method in the com.android.settings.ChooseLockGeneric class with the PASSWORD_QUALITY_UNSPECIFIED option.
Max CVSS
8.8
EPSS Score
0.51%
Published
2013-12-14
Updated
2013-12-18
1 vulnerabilities found