Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
server/content/ContentService.java in the Framework component in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not check for a GET_ACCOUNTS permission, which allows attackers to obtain sensitive information via a crafted application, aka internal bug 26094635.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Android Framework组件信息泄露漏洞
Vulnerability Description
Android是美国谷歌(Google)公司和开放手持设备联盟(简称OHA)共同开发的一套以Linux为基础的开源操作系统。Framework是其中的一个Android框架组件。 Android的Framework组件中的server/content/ContentService.java文件存在信息泄露漏洞,该漏洞源于程序没有检查GET_ACCOUNTS权限。攻击者可借助特制的应用程序利用该漏洞获取敏感信息的访问权限。以下版本受到影响:Android 4.4.4之前版本,5.0.2之前版本,5.1.1之
CVSS Information
N/A
Vulnerability Type
N/A