CVE-2019-2103

2019-09-05T22:15:00
ID CVE-2019-2103
Type cve
Reporter cve@mitre.org
Modified 2019-09-06T18:04:00

Description

In Google Assistant in Android 9, there is a possible permissions bypass that allows the Assistant to take a screenshot of apps with FLAG_SECURE. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.