Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Element Android PIN autologout bypass
Vulnerability Description
Element Android is an Android Matrix Client provided by Element. Element Android up to version 1.6.32 can, under certain circumstances, fail to logout the user if they input the wrong PIN more than the configured amount of times. An attacker with physical access to a device can exploit this to guess the PIN. Version 1.6.34 solves the issue.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Vulnerability Type
对错误会话暴露数据元素
Vulnerability Title
Element Android 安全漏洞
Vulnerability Description
Element Android是开源Element的一个 Android Matrix 客户端。 Element Android 1.6.32及之前版本存在安全漏洞,该漏洞源于在输入错误PIN超过配置次数时未能注销用户,可能导致攻击者猜测PIN。
CVSS Information
N/A
Vulnerability Type
N/A