cbcvebase.
CVE-2020-0459
published 2020-12-14

CVE-2020-0459: In sendConfiguredNetworkChangedBroadcast of WifiConfigManager.java, there is a possible leak of sensitive WiFi configuration data due to a missing permission…

low3.3CVSS 3.1
AVLACLPRLUINSUCLINAN
In sendConfiguredNetworkChangedBroadcast of WifiConfigManager.java, there is a possible leak of sensitive WiFi configuration data due to a missing permission check. This could lead to local information disclosure of WiFi network names with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-8.0Android ID: A-159373687

Affected

26 ranges· showing 25
VendorProductVersion rangeFixed in
googleandroid
googleandroid
googleandroid
googleandroid
googleandroid
googleandroid
platformframeworks_base>= 10:0 < 10:2020-12-0110:2020-12-01
platformframeworks_base>= 8.0:0 < 8.0:2020-12-018.0:2020-12-01
platformframeworks_base>= 8.1:0 < 8.1:2020-12-018.1:2020-12-01
platformframeworks_base>= 9:0 < 9:2020-12-019:2020-12-01
platformframeworks_opt_net_wifi>= 10:0 < 10:2020-12-0110:2020-12-01
platformframeworks_opt_net_wifi>= 8.0:0 < 8.0:2020-12-018.0:2020-12-01
platformframeworks_opt_net_wifi>= 8.1:0 < 8.1:2020-12-018.1:2020-12-01
platformframeworks_opt_net_wifi>= 9:0 < 9:2020-12-019:2020-12-01
platformpackages_apps_car_settings>= 10:0 < 10:2020-12-0110:2020-12-01
platformpackages_apps_car_settings>= 8.0:0 < 8.0:2020-12-018.0:2020-12-01
platformpackages_apps_car_settings>= 8.1:0 < 8.1:2020-12-018.1:2020-12-01
platformpackages_apps_car_settings>= 9:0 < 9:2020-12-019:2020-12-01
platformpackages_apps_settings>= 10:0 < 10:2020-12-0110:2020-12-01
platformpackages_apps_settings>= 8.0:0 < 8.0:2020-12-018.0:2020-12-01
platformpackages_apps_settings>= 8.1:0 < 8.1:2020-12-018.1:2020-12-01
platformpackages_apps_settings>= 9:0 < 9:2020-12-019:2020-12-01
platformpackages_services_car>= 10:0 < 10:2020-12-0110:2020-12-01
platformpackages_services_car>= 8.0:0 < 8.0:2020-12-018.0:2020-12-01
platformpackages_services_car>= 8.1:0 < 8.1:2020-12-018.1:2020-12-01