www.belgium.be Logo of the federal government

Scan_adb

Description

This report identifies hosts that have the Android Debug Bridge (ADB) running, bound to a network port (5555/tcp) and accessible on the Internet. 

Assessment

The entries in this report are hosts that have the ADB service open towards the internet. Any unauthenticated user can connect to the ADB, allowing full root access to the device or emulator. The likelihood is considered medium. This is a very easy target which does not even require an exploit. The impact is set to high as the device can be taken over completely by a malicious party. The overall risk is set to high.

Recommendations

  • Restrict access to internal networks.
  • If remote access is absolutely necessary, use a VPN.

References