CVE-2020-13626

OnePlus App Locker through 2020-10-06 allows physically proximate attackers to use Google Assistant to bypass an authorization check in order to send an SMS message when the SMS application is locked.
Configurations

Configuration 1 (hide)

cpe:2.3:a:oneplus:app_locker:*:*:*:*:*:*:*:*

History

07 Nov 2023, 03:16

Type Values Removed Values Added
References
  • {'url': 'https://medium.com/@bugsbunnyy1107/the-tell-tale-of-cve-in-oneplus-phones-91e97342a8b5', 'name': 'https://medium.com/@bugsbunnyy1107/the-tell-tale-of-cve-in-oneplus-phones-91e97342a8b5', 'tags': ['Third Party Advisory'], 'refsource': 'MISC'}
  • () https://medium.com/%40bugsbunnyy1107/the-tell-tale-of-cve-in-oneplus-phones-91e97342a8b5 -

Information

Published : 2020-10-09 06:15

Updated : 2024-02-28 18:08


NVD link : CVE-2020-13626

Mitre link : CVE-2020-13626

CVE.ORG link : CVE-2020-13626


JSON object : View

Products Affected

oneplus

  • app_locker
CWE
CWE-862

Missing Authorization