Denial of Service Vulnerability in 1Password 6.8 for Android

Denial of Service Vulnerability in 1Password 6.8 for Android

CVE-2018-13042 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

The 1Password application 6.8 for Android is affected by a Denial Of Service vulnerability. By starting the activity com.agilebits.onepassword.filling.openyolo.OpenYoloDeleteActivity or com.agilebits.onepassword.filling.openyolo.OpenYoloRetrieveActivity from an external application (since they are exported), it is possible to crash the 1Password instance.

Learn more about our Cis Benchmark Audit For Google Android.