For those who came in late, the app has three security bugs, discovered by three different researchers, when exploited, allow a nearby network attacker to inject keystrokes into remote keyboard sessions, and also execute malicious code on the user's Android device.
Intel has decided that instead of fixing three security bugs affecting the Intel Remote Keyboard Android app, it would be easier to discontinue the application altogether.
The Android application has been around since 2015 and allowed users to control Intel NUC and Intel Compute Stick single-board computers wirelessly.
Two of the bugs have received a severity score of "high," but one of the issues was classified as "critical".
CVE Severity Description
CVE-2018-3641 9.0 (Critical) Escalation of privilege in all versions of the Intel Remote Keyboard allows a network attacker to inject keystrokes as a local user.
CVE-2018-3645 8.8 (High) Escalation of privilege in all versions of the Intel Remote Keyboard allows a local attacker to inject keystrokes into another remote keyboard session.
CVE-2018-3638 7.2 (High) Escalation of privilege in all versions of the Intel Remote Keyboard allows an authorised local attacker to execute arbitrary code as a privileged user.
"Intel has issued a Product Discontinuation notice for Intel Remote Keyboard and recommends that users of the Intel Remote Keyboard uninstall it at their earliest convenience", the company said in a note to its customers.
The Intel Remote Keyboard app had over 500,000 installations and an average rating of 3.8 out of 5.0, according to a cached version of its now-defunct official Google Play Store page. The app received its last update last June.
Still, it is a little odd that with all the resources Intel has at its disposal adopting the French policy of simply surrendering and hoping it will go away was the policy of choice.