PT-2020-16477 · Google · Systemui

Published

2020-10-06

Updated

2021-07-21

CVE-2020-26604

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions SystemUI versions O(8.x) through R(11.0)

Description An issue was discovered in SystemUI that allows an unprivileged process to access contact numbers via PendingIntent.

Recommendations For versions O(8.x) through R(11.0), at the moment, there is no information about a newer version that contains a fix for this issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2020-26604

Affected Products

Systemui

PT-2020-16477 · Google · Systemui

CVE-2020-26604

Related Identifiers

Affected Products

References · 3