- Description
- An issue was discovered on LG mobile devices with Android OS 9.0 (Qualcomm SDM450, SDM845, SM6150, and SM8150 chipsets) software. Weak encryption leads to local information disclosure. The LG ID is LVE-SMP-190010 (August 2019).
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 3.1
- Type
- Primary
- Base score
- 5.5
- Impact score
- 3.6
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 2.1
- Impact score
- 2.9
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:N/A:N
- nvd@nist.gov
- CWE-327
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:google:android:9.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8DFAAD08-36DA-4C95-8200-C29FE5B6B854"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "A09E7B90-DD7B-4617-90FD-29FF5BB190A9"
},
{
"criteria": "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D342C86B-E184-457C-9F72-BD853ED79425"
},
{
"criteria": "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E3D3787B-6ACC-4591-B041-01307ED66C36"
},
{
"criteria": "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]