Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The GPS component in Android before 2016-12-05 allows man-in-the-middle attackers to cause a denial of service (GPS signal-acquisition delay) via an incorrect xtra.bin or xtra2.bin file on a spoofed Qualcomm gpsonextra.net or izatcloud.net host, aka internal bug 31470303 and external bug 211602 (and AndroidID-7225554).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Android GPS组件安全漏洞
Vulnerability Description
Android是美国谷歌(Google)公司和开放手持设备联盟(简称OHA)共同开发的一套以Linux为基础的开源操作系统。GPS是其中的一个全球定位组件。 Android 7.1.0及之前版本中的GPS组件中存在安全漏洞,该漏洞源于xtra.bin和xtra2.bin文件未使用数字签名。攻击者可利用该漏洞实施中间人攻击,造成拒绝服务(GPS信号采集延迟),修改数据。
CVSS Information
N/A
Vulnerability Type
N/A