CVE-2023-35671

Name of the Vulnerable Software and Affected Versions Android (affected versions not specified)

Description The issue is related to a logic error in the code of HostEmulationManager.java, specifically in the onHostEmulationData function. This error allows a general-purpose NFC reader to read the full card number and expiry details when the device is in locked screen mode, leading to local information disclosure without requiring additional execution privileges or user interaction.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.