CVE-2020-27041

Summary

In showProvisioningNotification of ConnectivityService.java, there is an unsafe PendingIntent. This could lead to local information disclosure of notification data with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-154928507

Affected Software

VendorProductVersion RangeStatus
n/aAndroidAndroid-11affected

Weaknesses

  • Information disclosure

ADP Enrichment

CVE Program Container

Additional References

References