Lucene search
China National Vulnerability DatabaseCNVD-2022-20539HistoryJan 18, 2022 - 12:00 a.m.
Google Android Automotive Os信息泄露漏洞
2022-01-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
google
android automotive os
security vulnerability
device pairing
broadcast
permission checks
sensitive information
cnvd
EPSS
0.001
Percentile
30.0%
Google Android Automotive Os is an operating system and platform from Google (USA) that runs directly on in-car hardware. Google Android Automotive Os has a security vulnerability that stems from the DevicePickerFragment sending a new device pairing broadcast without any permission checks, so any application can register to listen to it. An attacker could exploit this vulnerability to obtain sensitive information.
Related
cvelist
cvelist
CVE-2021-1037
2022-01-14 19:11:25
nvd
nvd
CVE-2021-1037
2022-01-14 20:15:09
prion
prion
Code injection
2022-01-14 20:15:00
cve
cve
CVE-2021-1037
2022-01-14 20:15:09
androidsecurity
androidsecurity
Android Automotive OS Update Bulletin—January 2022
2022-01-04 00:00:00