Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-6xgp-xr93-h7m8

Опубликовано: 24 мая 2022
Источник: github
Github: Не прошло ревью

Описание

In publishKeyEvent, publishMotionEvent and sendUnchainedFinishedSignal of InputTransport.cpp, there are uninitialized data leading to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9Android ID: A-115739809

In publishKeyEvent, publishMotionEvent and sendUnchainedFinishedSignal of InputTransport.cpp, there are uninitialized data leading to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9Android ID: A-115739809

Ссылки

EPSS

Процентиль: 11%
0.00037
Низкий

CVE ID

CVE-2019-2004

Связанные уязвимости

nvd логотип

CVE-2019-2004

CVSS3: 5.5
nvd
больше 6 лет назад

In publishKeyEvent, publishMotionEvent and sendUnchainedFinishedSignal of InputTransport.cpp, there are uninitialized data leading to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9Android ID: A-115739809

EPSS

Процентиль: 11%
0.00037
Низкий

CVE ID

CVE-2019-2004