15 Juil 2018
CVE-2018-14066 - CVE Vulnerability
The content://wappush content provider in com.android.provider.telephony, as found in some custom ROMs for Android phones, allows SQL injection. One consequence is that an application without the READ_SMS permission can read SMS messages. This affects Infinix X571 phones, as well as various Lenovo phones (such as the A7020) that have since been fixed by Lenovo. (CVSS:0.0) (Last Update:2018-07-15)
Vulnerability Details : The content://wappush content provider in com.android.provider.telephony, as found in some custom ROMs for Android phones, allows SQL injection. One consequence is that an application without the READ_SMS permission can read SMS messages. This affects Infinix X571 phones, as well as various Lenovo phones (such as the A7020) that have since been fixed by Lenovo. Publish Date : 2018-07-15 Last Update Date : 2018-07-15 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2018-14066
- References For CVE-2018-14066
| ||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2018-14066There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |