Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In ComposeActivityEmail of ComposeActivityEmail.java, there is a possible way to silently attach files to an email due to a confused deputy. This could lead to local information disclosure, sending files accessible to AOSP Mail to a remote email recipient, with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-32589229.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Android 信息泄露漏洞
Vulnerability Description
Google Android是美国谷歌(Google)公司的和开放手持设备联盟(简称OHA)共同开发的一套以Linux为基础的开源操作系统。 Google Android中的ComposeActivityEmail.java文件的‘ComposeActivityEmail’函数存在信息泄露漏洞。本地攻击者可通过发送文件利用该漏洞泄露信息。以下版本受到影响:Google Android 7.0版本,7.1.1版本,7.1.2版本,8.0版本,8.1版本,9版本。
CVSS Information
N/A
Vulnerability Type
N/A