Bug #22299: [External Audit Findings][Android] Weak Root Detection - VELO Production Issue - S-MADP Customer Support & Information Center

Bug #22299

[External Audit Findings][Android] Weak Root Detection

Added by yap chekying 21 days ago. Updated 11 days ago.

Status:

Closed

Start date:

29 July 2025

Priority:

Low

Due date:

Assignee:

yap chekying

% Done:

Category:

Spent time:

Target version:

Description

Issue:
Rooting is the process of gaining administrative or privileged access to the Android OS. Without root detection, attackers or malware may access sensitive information stored on the device.

Recommendation from pentester:
Developers should employ better methods to detect whether an app is running on a rooted device.

Please refer to attached excel for details.

Copy of Audit Findings - Silver lake - ver2.xlsx (5.15 MB) yap chekying, 29 July 2025 10:01 AM

Redmine 22299.png (75.5 KB) yap chekying, 08 August 2025 11:50 AM

History

#1 Updated by yap chekying 21 days ago

Subject changed from [External Audit][Android] Android: Weak Root Detection to [External Audit][Android] Weak Root Detection

#2 Updated by yap chekying 21 days ago

Subject changed from [External Audit][Android] Weak Root Detection to [External Audit Findings][Android] Weak Root Detection

#3 Updated by Hao Ter Tai 21 days ago

Assignee changed from Hao Ter Tai to Abdul Halim Baharom

#4 Updated by yap chekying 11 days ago

File Redmine 22299.png added
Status changed from New to Closed
Assignee changed from Abdul Halim Baharom to yap chekying

According to OCBC product owner, their shielding vendor can detect rooted devices, so no action is needed from the SL side

Also available in: Atom PDF

OCBC NISP Velocity Mobile » VELO Production Issue

Issues

Custom queries