Loading
Generated remediation guidance and an executive summary. No account required.
A certain Qualcomm Innovation Center (QuIC) patch to the NativeDaemonConnector class in services/java/com/android/server/NativeDaemonConnector.java in Code Aurora Forum (CAF) releases of Android 4.1.x through 4.3.x enables debug logging, which allows attackers to obtain sensitive disk-encryption passwords via a logcat call.
Use Codeaurora vendor hub and Android-Msm product page to widen CVE-2013-2599 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2013-2597, CVE-2013-4736 and CVE-2013-2595 for nearby disclosures in the same product family.