CVE-2019-1994

In refresh of DevelopmentTiles.java, there is the possibility of leaving development settings accessible due to an insecure default value. This could lead to unwanted access to development settings, with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-8.0 Android-8.1 Android-9. Android ID: A-117770924.
References
Link Resource
https://source.android.com/security/bulletin/2019-02-01 Vendor Advisory
http://www.securityfocus.com/bid/106946 Third Party Advisory VDB Entry
Configurations

Configuration 1

cpe:2.3:o:google:android:8.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:8.1:*:*:*:*:*:*:*
cpe:2.3:o:google:android:9.0:*:*:*:*:*:*:*

Information

Published : 2019-02-28 05:29

Updated : 2020-08-24 05:37


NVD link : CVE-2019-1994

Mitre link : CVE-2019-1994

Products Affected
No products.
CWE
CWE-1188

Insecure Default Initialization of Resource