CVE-2020-27059 – In onAuthenticated of AuthenticationClient.java, there is a possible tapjacking attack whe …

11 January 2021

Vuln ID: CVE-2020-27059

Published: 2021-01-11 21:15:13Z

Description: In onAuthenticated of AuthenticationClient.java, there is a possible tapjacking attack when requesting the user’s fingerprint due to an overlaid window. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android; Versions: Android-8.0, Android-8.1, Android-9, Android-10, 11; Android ID: A-159249069.

Source: NVD.NIST.GOV

Date:

11 January 2021

Categorie(s):

NVD

Tag(s):

NVD

Most people still rely on memory or pen and paper for password management26 April 2024
LSA Whisperer: Open-source tools for interacting with authentication packages26 April 2024
What AI can tell organizations about their M&A risk26 April 2024
Breaking down the numbers: Cybersecurity funding activity recap26 April 2024
New infosec products of the week: April 26, 202426 April 2024