CVE-2015-9213

Name of the Vulnerable Software and Affected Versions Android versions prior to 2018-04-05

Description The issue concerns the DIAG-EFS command EFS2 DIAG DELTREE, handled by the function fs diag deltree handler(), which is used to delete files and directories. This command is intended to only delete files and directories inside the /public folder.

Recommendations For Android versions prior to 2018-04-05, consider restricting access to the EFS2 DIAG DELTREE command to minimize the risk of exploitation. As a temporary workaround, consider disabling the fs diag deltree handler() function until a patch is available.