16 matches found
Xiaomi Mi A2 Lite Access Control Error Vulnerability
Xiaomi Mi A2 Lite is a smartphone from Chinese company Xiaomi Technology Xiaomi. A vulnerability in the Xiaomi Mi A2 Lite build fingerprint: xiaomi/jasmine/jasminesprout:9/PKQ1.180904.001/V10.0.2.0.PDIMIFJ:user/release-keys in the com.qualcomm An access control error vulnerability exists in the...
Xiaomi Redmi Note 6 Pro Access Control Error Vulnerability
Xiaomi Redmi Note 6 Pro is a smartphone from Chinese company Xiaomi Technology Xiaomi. The Xiaomi Redmi Note 6 Pro build fingerprint: xiaomi/tulip/tulip:8.1.0/OPM1.171019.011/V10.2.2.0.OEKMIXM:user/release-keys contains a vulnerability in the com.qualcomm. qti.callenhancement app is vulnerable to...
Xiaomi Mi A2 Lite Access Control Error Vulnerability (CNVD-2019-41694)
Xiaomi Mi A2 Lite is a smartphone from Chinese company Xiaomi Technology Xiaomi. A security vulnerability exists in the Xiaomi Mi A2 Lite build fingerprint: xiaomi/daisy/daisysprout:9/PKQ1.180917.001/V10.0.3.0.PDLMIXM:user/release-keys in the com.qualcomm.qti A security vulnerability exists in th...
Xiaomi Cepheus Access Control Error Vulnerability
Xiaomi Cepheus is a smartphone from Chinese company Xiaomi Technology Xiaomi. The Xiaomi Cepheus build fingerprint: Xiaomi/cepheus/cepheus:9/PKQ1.181121.001/V10.2.6.0.PFAMIXM:user/release-keys in the com.qualcomm.qti. An access control error vulnerability exists in the callenhancement app. An...
Sony Xperia Touch Access Control Error Vulnerability
The Sony Xperia Touch is a touch projector from Sony Japan. A vulnerability in the Sony Xperia Touch build fingerprint: Sony/blancwindy/blancwindy:7.0/LOIRE-SMART-BLANC-1.0.0-170530-0834/1:user/dev-keys in the com. An access control error vulnerability exists in the...
CVE-2019-15743
The Sony Xperia Touch Android device with a build fingerprint of Sony/blancwindy/blancwindy:7.0/LOIRE-SMART-BLANC-1.0.0-170530-0834/1:user/dev-keys contains a pre-installed app with a package name of com.sonymobile.android.maintenancetool.testmic app versionCode=24, versionName=7.0 that allows...
CVE-2019-15472
The Xiaomi Mi A2 Lite Android device with a build fingerprint of xiaomi/daisy/daisysprout:9/PKQ1.180917.001/V10.0.3.0.PDLMIXM:user/release-keys contains a pre-installed app with a package name of com.qualcomm.qti.callenhancement app versionCode=28, versionName=9 that allows unauthorized microphon...
Design/Logic Flaw
The Xiaomi Mi A2 Lite Android device with a build fingerprint of xiaomi/daisy/daisysprout:9/PKQ1.180917.001/V10.0.3.0.PDLMIXM:user/release-keys contains a pre-installed app with a package name of com.qualcomm.qti.callenhancement app versionCode=28, versionName=9 that allows unauthorized microphon...
Input validation
The Xiaomi Mi A3 Android device with a build fingerprint of xiaomi/onceea/onc:9/PKQ1.181021.001/V10.2.8.0.PFLEUXM:user/release-keys contains a pre-installed app with a package name of com.qualcomm.qti.callenhancement app versionCode=28, versionName=9 that allows unauthorized microphone audio...
Input validation
The Xiaomi Mi A2 Lite Android device with a build fingerprint of xiaomi/jasmine/jasminesprout:9/PKQ1.180904.001/V10.0.2.0.PDIMIFJ:user/release-keys contains a pre-installed app with a package name of com.qualcomm.qti.callenhancement app versionCode=28, versionName=9 that allows unauthorized...
Input validation
The Xiaomi Cepheus Android device with a build fingerprint of Xiaomi/cepheus/cepheus:9/PKQ1.181121.001/V10.2.6.0.PFAMIXM:user/release-keys contains a pre-installed app with a package name of com.qualcomm.qti.callenhancement app versionCode=28, versionName=9 that allows unauthorized microphone aud...
CVE-2019-15743
The Sony Xperia Touch Android device with a build fingerprint of Sony/blancwindy/blancwindy:7.0/LOIRE-SMART-BLANC-1.0.0-170530-0834/1:user/dev-keys contains a pre-installed app with a package name of com.sonymobile.android.maintenancetool.testmic app versionCode=24, versionName=7.0 that allows...
CVE-2019-15474
CVE-2019-15474 relates to the Xiaomi Cepheus Android device where a pre-installed app, com.qualcomm.qti.callenhancement, can be abused via a confused deputy attack. The app exposes an interface that lets any co-located app perform unauthorized microphone audio recording, saving recordings to exte...
CVE-2019-15473
The Xiaomi Mi A2 Lite Android device with a build fingerprint of xiaomi/jasmine/jasminesprout:9/PKQ1.180904.001/V10.0.2.0.PDIMIFJ:user/release-keys contains a pre-installed app with a package name of com.qualcomm.qti.callenhancement app versionCode=28, versionName=9 that allows unauthorized...
CVE-2019-15472
The Xiaomi Mi A2 Lite Android device with a build fingerprint of xiaomi/daisy/daisysprout:9/PKQ1.180917.001/V10.0.3.0.PDLMIXM:user/release-keys contains a pre-installed app with a package name of com.qualcomm.qti.callenhancement app versionCode=28, versionName=9 that allows unauthorized microphon...
CVE-2019-15472
The CVE-2019-15472 entry describes a vulnerability on the Xiaomi Mi A2 Lite (build fingerprint xiaomi/daisy/daisy_sprout:9/PKQ1.180917.001/V10.0.3.0.PDLMIXM:user/release-keys). A pre-installed package com.qualcomm.qti.callenhancement (versionCode 28, versionName 9) exposes an interface that allow...