CVE-2017-10709

Name of the Vulnerable Software and Affected Versions Elephone P9000 devices running Android 6.0

Description The issue concerns a security flaw in the lockscreen component of the Android operating system, specifically related to errors in security settings. This flaw allows a physically proximate attacker to bypass the wrong-PIN lockout feature. The attacker can exploit this by pressing the backspace key after each PIN guess, thereby circumventing the lockout mechanism.

Recommendations For Elephone P9000 devices running Android 6.0, consider disabling the lockscreen feature until a patch is available, or avoid using the PIN lock feature to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.