CVE-2017-15530

LOW

Norton Family Android App < 4.4.1.10 - Information Disclosure

Title source: llm

Description

Prior to 4.4.1.10, the Norton Family Android App can be susceptible to an Information Disclosure issue. Information disclosure is a very common issue that attackers will attempt to exploit as a first pass across the application. As they probe the application they will take note of anything that may seem out of place or any bit of information they can use to their advantage such as error messages, system information, user data, version numbers, component names, URL paths, or even simple typos and misspellings.

References (2)

Core 2

Core References

Vendor Advisory x_refsource_confirm

https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20171213_00

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/102120

Scores

CVSS v3 3.3

EPSS 0.0008

EPSS Percentile 22.8%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Details

CWE

CWE-200

Status published

Products (2)

symantec/norton_family < 4.4.1.10

Symantec Corporation/Norton Family Android App Prior to 4.4.1.10

Published Dec 13, 2017

Tracked Since Feb 18, 2026