Insufficient Access Control in Lenovo Help Android App: Potential Exposure of Email Addresses and IMEI

Insufficient Access Control in Lenovo Help Android App: Potential Exposure of Email Addresses and IMEI

CVE-2018-9067 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The Lenovo Help Android app versions earlier than 6.1.2.0327 had insufficient access control for some functions which, if exploited, could have led to exposure of approximately 400 email addresses and 8,500 IMEI.

Learn more about our Cis Benchmark Audit For Google Android.