2 matches found
CVE-2020-0368
In queryInternal of CallLogProvider.java, there is a possible permission bypass due to improper input validation. This could lead to local information disclosure of voicemail metadata with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
CVE-2020-0368
Summary of CVE-2020-0368 (Android) Affects Android 11 where the issue lies in the CallLogProvider.java function queryInternal . The root cause is improper input validation, enabling a local permission bypass that could disclose voicemail metadata. Exploitation requires User privileges but not use...