CVE-2017-0498 | Vulnerability Database | Aqua Security

A denial of service vulnerability in Setup Wizard could allow a local attacker to require Google account sign-in after a factory reset. This issue is rated as Moderate because it may require a factory reset to repair the device. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-30352311.

Affected Software

Name	Vendor	Start Version	End Version
Android	Google	5.0 (including)	5.0 (including)
Android	Google	5.0.1 (including)	5.0.1 (including)
Android	Google	5.0.2 (including)	5.0.2 (including)
Android	Google	5.1 (including)	5.1 (including)
Android	Google	5.1.0 (including)	5.1.0 (including)
Android	Google	5.1.1 (including)	5.1.1 (including)
Android	Google	6.0 (including)	6.0 (including)
Android	Google	6.0.1 (including)	6.0.1 (including)
Android	Google	7.0 (including)	7.0 (including)
Android	Google	7.1.0 (including)	7.1.0 (including)
Android	Google	7.1.1 (including)	7.1.1 (including)

References

http://www.securityfocus.com/bid/96793
http://www.securitytracker.com/id/1037968
https://source.android.com/security/bulletin/2017-03-01
https://source.android.com/security/bulletin/2017-03-01.html
http://www.securityfocus.com/bid/96793
http://www.securitytracker.com/id/1037968
https://source.android.com/security/bulletin/2017-03-01

NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-0498
CWE	https://cwe.mitre.org/data/definitions/.html