CVE-2013-2599

2014-08-3110:00:00

mitre

www.cve.org

6.4 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

49.2%

JSON

A certain Qualcomm Innovation Center (QuIC) patch to the NativeDaemonConnector class in services/java/com/android/server/NativeDaemonConnector.java in Code Aurora Forum (CAF) releases of Android 4.1.x through 4.3.x enables debug logging, which allows attackers to obtain sensitive disk-encryption passwords via a logcat call.