Android Emulator ADB Port on Remote Host

high Nessus Plugin ID 66382

Synopsis

The remote host exposes the ADB control port of an Android emulator.

Description

The remote host exposes the ADB (Android Debug Bridge) control port of an Android emulator allowing full, unauthenticated, root access to the emulated Android device.

Solution

Configure the firewall to prevent access to this port or configure the emulator software to listen on local interfaces only.

See Also

https://developer.android.com/studio/command-line/adb

Plugin Details

Severity: High

ID: 66382

File Name: android_emulator_adb_detect.nasl

Version: 1.8

Type: remote

Published: 5/11/2013

Updated: 4/11/2022

Configuration: Enable thorough checks

Asset Inventory: true

Hardware Inventory: true

OS Identification: true

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: High

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/o:google:android