CVE-2017-0560

Name of the Vulnerable Software and Affected Versions Android versions 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1

Description An information disclosure issue in the factory reset process could allow a local malicious attacker to access data from the previous owner. This issue is related to the lack of protection for service data, which could enable an attacker to obtain access to previous owner's data after a factory reset.

Recommendations For versions 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, consider implementing additional security measures to protect data, such as encrypting data before performing a factory reset. At the moment, there is no information about a newer version that contains a fix for this vulnerability.