Android Telephony Vulnerability: Local Information Disclosure without User Interaction

Android Telephony Vulnerability: Local Information Disclosure without User Interaction

CVE-2020-0265 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

In Telephony, there are possible leaks of sensitive data due to missing permission checks. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-150155839

Learn more about our Cis Benchmark Audit For Google Android.