PT-2021-9127 · Google · Android
Published
2021-06-11
·
Updated
2021-06-15
·
CVE-2019-9475
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Android versions Android-10
Description
The issue is related to a permissions bypass in the kernel filesystem, specifically in /proc/net, which could lead to a local information leak. No additional execution privileges are needed for exploitation, and user interaction is not required.
Recommendations
For Android version Android-10, update to a version that includes the fix for the information leak issue in the kernel filesystem.
Fix
Exposure of Resource to Wrong Sphere
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Android