CVE-2020-13626

OnePlus App Locker through 2020-10-06 allows physically proximate attackers to use Google Assistant to bypass an authorization check in order to send an SMS message when the SMS application is locked.
Configurations

Configuration 1 (hide)

cpe:2.3:a:oneplus:app_locker:*:*:*:*:*:*:*:*

History

21 Nov 2024, 05:01

Type Values Removed Values Added
References () https://medium.com/%40bugsbunnyy1107/the-tell-tale-of-cve-in-oneplus-phones-91e97342a8b5 - () https://medium.com/%40bugsbunnyy1107/the-tell-tale-of-cve-in-oneplus-phones-91e97342a8b5 -
References () https://support.oneplus.com/app/answers/detail/a_id/301/~/how-to-use-app-locker - Third Party Advisory () https://support.oneplus.com/app/answers/detail/a_id/301/~/how-to-use-app-locker - Third Party Advisory

07 Nov 2023, 03:16

Type Values Removed Values Added
References
  • {'url': 'https://medium.com/@bugsbunnyy1107/the-tell-tale-of-cve-in-oneplus-phones-91e97342a8b5', 'name': 'https://medium.com/@bugsbunnyy1107/the-tell-tale-of-cve-in-oneplus-phones-91e97342a8b5', 'tags': ['Third Party Advisory'], 'refsource': 'MISC'}
  • () https://medium.com/%40bugsbunnyy1107/the-tell-tale-of-cve-in-oneplus-phones-91e97342a8b5 -

Information

Published : 2020-10-09 06:15

Updated : 2024-11-21 05:01


NVD link : CVE-2020-13626

Mitre link : CVE-2020-13626

CVE.ORG link : CVE-2020-13626


JSON object : View

Products Affected

oneplus

  • app_locker
CWE
CWE-862

Missing Authorization