Insufficient Cleanup in stopZygoteLocked of AppZygote.java Allows Local Information Disclosure

Insufficient Cleanup in stopZygoteLocked of AppZygote.java Allows Local Information Disclosure

CVE-2020-0258 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

In stopZygoteLocked of AppZygote.java, there is an insufficient cleanup. This could lead to local information disclosure in the application that is started next with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-157598956

Learn more about our Cis Benchmark Audit For Google Android.