Bypass of AKA in LG Mobile Devices with Android OS 7.0-8.1

Bypass of AKA in LG Mobile Devices with Android OS 7.0-8.1

CVE-2019-20783 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, and 8.1 (North America CDMA) software. The LTE protocol implementation allows a bypass of AKA (Authentication and Key Agreement). The LG ID is LVE-SMP-180014 (February 2019).

Learn more about our Cis Benchmark Audit For Google Android.