VYPR
Unrated severityNVD Advisory· Published Feb 28, 2019· Updated Sep 16, 2024

CVE-2019-1997

CVE-2019-1997

Description

In random_get_bytes of random.c, there is a possible degradation of randomness due to an insecure default value. This could lead to local information disclosure via an insecure wireless connection with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-117508900.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Google/Android SDKllm-fuzzy2 versions
    = 7.0, 7.1.1, 7.1.2, 8.0, 8.1, 9+ 1 more
    • (no CPE)range: = 7.0, 7.1.1, 7.1.2, 8.0, 8.1, 9
    • (no CPE)range: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.