Medium severity5.3NVD Advisory· Published Sep 20, 2017· Updated May 13, 2026
CVE-2015-9232
CVE-2015-9232
Description
The Good for Enterprise application 3.0.0.415 for Android does not use signature protection for its Authentication Delegation API intent. Also, the Good Dynamic application activation process does not attempt to detect malicious activation attempts involving modified names beginning with a com.good.gdgma substring. Consequently, an attacker could obtain access to intranet data. This issue is only relevant in cases where the user has already downloaded a malicious Android application.
Affected products
1- cpe:2.3:a:good:good_for_enterprise:3.0.0.415:*:*:*:*:android:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- www.securityfocus.com/archive/1/536543nvdExploitMitigationThird Party AdvisoryVDB Entry
- www.modzero.ch/advisories/MZ-15-03-GOOD-Auth-Delegation.txtnvdExploitMitigationThird Party Advisory
- community.blackberry.com/community/blogs/blog/2015/10/02/what-you-need-to-know-modzero-insecure-application-couplingnvdThird Party Advisory
News mentions
0No linked articles in our index yet.