ANDROSAST

Dated: 24/4/2019

APK Details

Package: com.davik.equalizer
Version: 1.2
Version number: 3
Minimum SDK version: 19 (Android 4.4 KitKat)
Target SDK: 25 (Android 7.1 Nougat MR1)
Fingerprints: MD5: 4304baf4e45a868f23ed5d5e8a39fb3e
SHA-1: ab145abc1c91bd5d1771c339cdcaa20837d33378
SHA-256: edb2de519142aea8f0d958f05c476542cc0fa58626cc12f33698ec7fe2edc65e
Total vulnerabilities found: 1
Critical: 0

Vulnerability Chart

Vulnerability

Priority Count
Critical 0
High 0
Medium 1
Low 4
Warning 1

Vulnerability List

# Priority Name Description
1 Medium Allows Backup This option allows backups of the application data via adb. Malicious people with physical access could use adb to get private data of your app into their PC.
1 Low Generic Exception in catch Exception catching should be specific. Generic Exception type could not be safe and lead to silent error suppresion
2 Low Generic Exception in catch Exception catching should be specific. Generic Exception type could not be safe and lead to silent error suppresion
3 Low Generic Exception in catch Exception catching should be specific. Generic Exception type could not be safe and lead to silent error suppresion
4 Low Generic Exception in catch Exception catching should be specific. Generic Exception type could not be safe and lead to silent error suppresion
1 Warning Exported activity Exported activity was found. It can be used by other applications.

Medium Vulnerability List

Allows Backup

Description:
This option allows backups of the application data via adb. Malicious people with physical access could use adb to get private data of your app into their PC.
File
AndroidManifest.xml
Language
xml
Line
6
Affected code
<manifest xmlns:android="http://schemas.android.com/apk/res/android" platformBuildVersionCode="25" android:versionName="1.2" platformBuildVersionName="7.1.1" android:versionCode="3" package="com.davik.equalizer">
<uses-sdk android:minSdkVersion="19" android:targetSdkVersion="25" />
<uses-permission android:name="android.permission.MODIFY_AUDIO_SETTINGS" />
<meta-data android:name="android.support.VERSION" android:value="25.3.1" />
<application android:fullBackupContent="true" android:supportsRtl="true" android:theme="@com.davik.equalizer:style/AppTheme" android:label="@com.davik.equalizer:string/app_name" android:icon="@com.davik.equalizer:mipmap/ic_launcher" android:allowBackup="true">
<activity android:screenOrientation="portrait" android:name="com.davik.equalizer.MainActivity">
<intent-filter>
<action android:name="android.intent.action.MAIN" />
<category android:name="android.intent.category.LAUNCHER" />

Low Vulnerability List

Generic Exception in catch

Description:
Exception catching should be specific. Generic Exception type could not be safe and lead to silent error suppresion
File
classes/com/davik/equalizer/MainActivity.java
Language
java
Line
56
Affected code
      Effects.equalizer = (Equalizer)localObject;
Effects.equalizer.setEnabled(Effects.useEqualizer);
Effects.supportsEqualizer = true;
}
catch (Exception localException3)
{
try
{
localObject = new android/media/audiofx/BassBoost;

Generic Exception in catch

Description:
Exception catching should be specific. Generic Exception type could not be safe and lead to silent error suppresion
File
classes/com/davik/equalizer/MainActivity.java
Language
java
Line
66
Affected code
        Effects.bassBoost = (BassBoost)localObject;
Effects.bassBoost.setEnabled(Effects.useBassBoost);
Effects.supportsBassBoost = true;
}
catch (Exception localException3)
{
try
{
localObject = new android/media/audiofx/LoudnessEnhancer;

Generic Exception in catch

Description:
Exception catching should be specific. Generic Exception type could not be safe and lead to silent error suppresion
File
classes/com/davik/equalizer/MainActivity.java
Language
java
Line
76
Affected code
          Effects.loudnessEnhancer = (LoudnessEnhancer)localObject;
Effects.loudnessEnhancer.setEnabled(Effects.useLoudnessEnhancer);
Effects.supportsLoudnessEnhancer = true;
}
catch (Exception localException3)
{
try
{
for (;;)

Generic Exception in catch

Description:
Exception catching should be specific. Generic Exception type could not be safe and lead to silent error suppresion
File
classes/com/davik/equalizer/MainActivity.java
Language
java
Line
104
Affected code
              Toast.makeText(getApplicationContext(), 2131165227, 1).show();
Effects.supportsLoudnessEnhancer = false;
}
}
catch (Exception localException4)
{
for (;;)
{
localException4.printStackTrace();

Warning List

Exported activity

Description:
Exported activity was found. It can be used by other applications.
File
AndroidManifest.xml
Language
xml
Line
7
Affected code
  <uses-sdk android:minSdkVersion="19" android:targetSdkVersion="25" />
<uses-permission android:name="android.permission.MODIFY_AUDIO_SETTINGS" />
<meta-data android:name="android.support.VERSION" android:value="25.3.1" />
<application android:fullBackupContent="true" android:supportsRtl="true" android:theme="@com.davik.equalizer:style/AppTheme" android:label="@com.davik.equalizer:string/app_name" android:icon="@com.davik.equalizer:mipmap/ic_launcher" android:allowBackup="true">
<activity android:screenOrientation="portrait" android:name="com.davik.equalizer.MainActivity">
<intent-filter>
<action android:name="android.intent.action.MAIN" />
<category android:name="android.intent.category.LAUNCHER" />
</intent-filter>