Android Motion Event Monitoring Vulnerability in Wear OS

Vulnerability

A vulnerability exists in Wear OS applications that allows for the monitoring of motion events through a confused deputy scenario. This issue, stemming from the AndroidManifest.xml configuration, could result in local information disclosure without requiring additional execution privileges. Notably, exploitation of this vulnerability does not involve user interaction.

Impact

Exploitation of this vulnerability could lead to unauthorized access to motion event data, allowing for potential local information disclosure.

Added: Sep 4, 2025, 8:02 PM

Updated: Sep 4, 2025, 9:17 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.7

remediation

0.0

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.7

remediation

0.0

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Android Motion Event Monitoring Vulnerability in Wear OS

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating