Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In ContentService, there is a possible way to determine if an account is on the device without GET_ACCOUNTS permission due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-200573021
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Google Android 安全漏洞
Vulnerability Description
Google Android是美国谷歌(Google)公司的一套以Linux为基础的开源操作系统。 Google Android 13存在安全漏洞,该漏洞源于其ContentService中存在一种由于缺少权限检查引起的可能的方法来确定设备上的一个账户是否具有GET_ACCOUNTS权限,这可能会导致需要User执行权限的本地信息泄露。此利用方式不需要用户交互。
CVSS Information
N/A
Vulnerability Type
N/A