A vulnerability that stores IMSI values in an improper path prior to SMR APR-2021 Release 1 allows local attackers to access IMSI values without any permission via untrusted applications.
The product stores a password in plaintext within resources such as memory or files.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Android | 9.0 (including) | 9.0 (including) | |
Android | 10.0 (including) | 10.0 (including) |