Heap Memory Information Disclosure in flattenString8 of Sensor.cpp

Heap Memory Information Disclosure in flattenString8 of Sensor.cpp

CVE-2020-0007 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

In flattenString8 of Sensor.cpp, there is a possible information disclosure of heap memory due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-8.0, Android-8.1, Android-9, and Android-10 Android ID: A-141890807

Learn more about our Cis Benchmark Audit For Google Android.