CVE-2019-2137

In the endCall() function of TelecomManager.java, there is a possible Denial of Service due to a missing permission check. This could lead to local denial of access to Emergency Services with User execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-132438333.

Published : 2019-08-20 20:15 Updated : 2019-08-22 18:27

4.9
CVSS Score More info
Score 4.9 / 10
4.9
Vendor Product Version URI
Google Android 9.0 cpe:/o:google:android:9.0
  1. Google (1) Search CVE
    1. Android (1) Search CVE
      1. 9.0

CWE

ID Name Description Links
CWE-20 Improper Input Validation The product does not validate or incorrectly validates input that can affect the control flow or data flow of a program. CVE

History of changes

Date Event
2019-08-22 18:27
2019-08-20 21:15

New CVE