Closed sdog-nist closed 7 years ago
Entered on behalf of Jeffrey Chichonski, NIST.
Threat Category: Application
Threat: Clickjacking on Android devices to unknowingly lead the user into clicking through hidden actions, such as configuring the device to allow installation of apps from Unknown Sources.
Threat Origin: https://www.skycure.com/blog/accessibility-clickjacking/
Exploit Example:
CVE Example:
Possible Countermeasures:
References:
Entered on behalf of Jeffrey Chichonski, NIST.
New Threat
Threat Category: Application
Threat: Clickjacking on Android devices to unknowingly lead the user into clicking through hidden actions, such as configuring the device to allow installation of apps from Unknown Sources.
Threat Origin: https://www.skycure.com/blog/accessibility-clickjacking/
Exploit Example:
CVE Example:
Possible Countermeasures:
References: