Local Information Disclosure Vulnerability in libl3oemcrypto.cpp

Local Information Disclosure Vulnerability in libl3oemcrypto.cpp

CVE-2021-0639 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

In multiple functions of libl3oemcrypto.cpp, there is a possible weakness in the existing obfuscation mechanism due to the way sensitive data is handled. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-190724551

Learn more about our Cis Benchmark Audit For Google Android.