Android Framework StatusHints and TelecomServiceImpl Cross-User Image Disclosure Vulnerability
Vulnerability
A vulnerability exists in the Android framework's Telecomm package, specifically within the StatusHint and TelecomServiceImpl classes. This issue allows for the potential unauthorized disclosure of images between users, arising from improper validation of user identifiers. The vulnerability requires user interaction to exploit and does not necessitate any additional privileges.
Impact
Exploitation of this vulnerability could lead to unauthorized local access to images from other users.
Reproduction
The vulnerability can be reproduced by formatting a user ID URI with a percent sign, which is not correctly parsed by the current user information handling. This can be tested by registering a phone account through the Telecom service, using the improperly formatted URI.
Remediation
Users can update their devices to the March 2025 security patch level, which addresses this vulnerability.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.