CVE-2016-6586

Summary

A security bypass vulnerability exists in Symantec Norton Mobile Security for Android before 3.16, which could let a malicious user conduct a man-in-the-middle via specially crafted JavaScript to add arbitrary URLs to the URL whitelist.

Affected Software

VendorProductVersion RangeStatus
SymantecNorton Mobile Security for Androidbefore 3.16affected

Weaknesses

  • Security Bypass Vulnerability

ADP Enrichment

CVE Program Container

Additional References

References