CVE-2019-2119

2019-07-0817:41:52

google_android

www.cve.org

AI Score

5.1

Confidence

High

EPSS

Percentile

5.1%

JSON

In multiple functions of key_store_service.cpp, there is a possible Information Disclosure due to improper locking. This could lead to local information disclosure of protected data with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-8.0 Android-8.1 Android-9. Android ID: A-131622568.

CNA Affected

[
  {
    "product": "Android",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Android-8.0 Android-8.1 Android-9"
      }
    ]
  }
]

References

source.android.com/security/bulletin/2019-07-01