Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The compose functionality in AOSP Mail in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 does not properly restrict attachments, which allows attackers to obtain sensitive information via a crafted application, related to ComposeActivity.java and ComposeActivityEmail.java, aka internal bug 27335139.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Android AOSP Mail 信息泄露漏洞
Vulnerability Description
Android是美国谷歌(Google)公司和开放手持设备联盟(简称OHA)共同开发的一套以Linux为基础的开源操作系统。AOSP Mail是其中的一个AOSP(Android开源项目)电子邮件组件。 Android的AOSP Mail中的compose功能存在信息泄露漏洞,该漏洞源于程序没有正确限制附件。本地攻击者可借助恶意的应用程序利用该漏洞获取用户私有信息的访问权限。以下版本受到影响:Android 5.0.2之前版本,5.1.1之前版本,6.0之前版本,6.0.1之前版本。
CVSS Information
N/A
Vulnerability Type
N/A