Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Sony Xperia Touch Android device with a build fingerprint of Sony/blanc_windy/blanc_windy:7.0/LOIRE-SMART-BLANC-1.0.0-170530-0834/1:user/dev-keys contains a pre-installed app with a package name of com.sonymobile.android.maintenancetool.testmic app (versionCode=24, versionName=7.0) that allows unauthorized microphone audio recording via a confused deputy attack. This capability can be accessed by any app co-located on the device. This app allows a third-party app to use its open interface to record audio to external storage.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Sony Xperia Touch 访问控制错误漏洞
Vulnerability Description
Sony Xperia Touch是日本索尼(Sony)公司的一款触控投影机。 Sony Xperia Touch(build fingerprint:Sony/blanc_windy/blanc_windy:7.0/LOIRE-SMART-BLANC-1.0.0-170530-0834/1:user/dev-keys)中的com.sonymobile.android.maintenancetool.testmic app存在访问控制错误漏洞。攻击者可利用该漏洞进行未授权的话筒录音。
CVSS Information
N/A
Vulnerability Type
N/A