ID
VAR-E-201506-0554
CVE
| cve_id: | CVE-2015-4640 | Trust: 0.3 |
sources:
BID: 75347
TITLE
SwiftKey CVE-2015-4640 Man in The Middle Security Bypass Vulnerability
Trust: 0.3
sources:
BID: 75347
DESCRIPTION
SwiftKey is prone to a security-bypass vulnerability.
Remote attackers can exploit this issue to modify or write arbitrary data to the affected device. Other attacks are also possible.
Trust: 0.3
sources:
BID: 75347
AFFECTED PRODUCTS
| vendor: | swiftkey | model: | sdk | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | samsung | model: | galaxy s6 | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | samsung | model: | galaxy s5 | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | samsung | model: | galaxy s4 mini | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | samsung | model: | galaxy s4 | scope: | eq | version: | 0 | Trust: 0.3 |
sources:
BID: 75347
EXPLOIT
Attackers can use readily available network utilities.
Trust: 0.3
sources:
BID: 75347
PRICE
Free
Trust: 0.3
sources:
BID: 75347
TYPE
Design Error
Trust: 0.3
sources:
BID: 75347
CREDITS
Ryan Welton and Ted Eull of NowSecure
Trust: 0.3
sources:
BID: 75347
EXTERNAL IDS
| db: | NVD | id: | CVE-2015-4640 | Trust: 0.3 |
| db: | BID | id: | 75347 | Trust: 0.3 |
sources:
BID: 75347
REFERENCES
| url: | http://www.samsung.com/ | Trust: 0.3 |
| url: | https://www.nowsecure.com/keyboard-vulnerability/ | Trust: 0.3 |
| url: | https://www.nowsecure.com/blog/2015/06/16/remote-code-execution-as-system-user-on-samsung-phones/ | Trust: 0.3 |
sources:
BID: 75347
SOURCES
| db: | BID | id: | 75347 |
LAST UPDATE DATE
2022-07-27T09:35:19.499000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 75347 | date: | 2015-06-19T00:00:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 75347 | date: | 2015-06-19T00:00:00 |