CVE-2020-13626

2020-10-0905:02:52

mitre

www.cve.org

oneplus

app locker

vulnerability

unauthorized access

sms

google assistant

AI Score

4.8

Confidence

High

EPSS

0.001

Percentile

25.2%

JSON

OnePlus App Locker through 2020-10-06 allows physically proximate attackers to use Google Assistant to bypass an authorization check in order to send an SMS message when the SMS application is locked.

References

medium.com/%40bugsbunnyy1107/the-tell-tale-of-cve-in-oneplus-phones-91e97342a8b5

support.oneplus.com/app/answers/detail/a_id/301/~/how-to-use-app-locker