In onHostEmulationData of HostEmulationManager.java, there is a possible way for a general purpose NFC reader to read the full card number and expiry details when the device is in locked screen mode due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
{ "vanir_signatures": [ { "digest": { "threshold": 0.9, "line_hashes": [ "110866618968501505513047877639112891999", "221764726489805107389971049563589762627", "278520023814604683377314502770623374671", "45428150385889769144377600164922333789" ] }, "id": "ASB-A-268038643-78ee6475", "source": "https://android.googlesource.com/platform/packages/apps/Nfc/+/6cb53d963d376b97963120a4d2c7df961789e428", "deprecated": false, "signature_version": "v1", "target": { "file": "src/com/android/nfc/cardemulation/HostEmulationManager.java" }, "signature_type": "Line" }, { "digest": { "threshold": 0.9, "line_hashes": [ "287829365925445715483659298781676756817", "93922054408343538861188962430576834619", "199062318457883682300576972194368110861" ] }, "id": "ASB-A-268038643-f00b2907", "source": "https://android.googlesource.com/platform/packages/apps/Nfc/+/6cb53d963d376b97963120a4d2c7df961789e428", "deprecated": false, "signature_version": "v1", "target": { "file": "src/com/android/nfc/NfcService.java" }, "signature_type": "Line" }, { "digest": { "length": 3419.0, "function_hash": "282346893729420854136991953993589179214" }, "id": "ASB-A-268038643-f84a981c", "source": "https://android.googlesource.com/platform/packages/apps/Nfc/+/6cb53d963d376b97963120a4d2c7df961789e428", "deprecated": false, "signature_version": "v1", "target": { "file": "src/com/android/nfc/cardemulation/HostEmulationManager.java", "function": "onHostEmulationData" }, "signature_type": "Function" } ], "fixes": [ "https://android.googlesource.com/platform/packages/apps/Nfc/+/6cb53d963d376b97963120a4d2c7df961789e428" ], "spl": "2023-09-01", "severity": "High", "types": [ "ID" ] }
{ "vanir_signatures": [ { "digest": { "threshold": 0.9, "line_hashes": [ "271055080462231680351012234498051702355", "111552660683889881621406641232615389006", "268906614407820728310099806307650203101", "296109978503100678768439480874051096449", "202336758225234101879251178291874369964" ] }, "id": "ASB-A-268038643-2b17aca5", "source": "https://android.googlesource.com/platform/packages/apps/Nfc/+/d6d8f79fd8d605b3cb460895a8e3a11bcf0c22b0", "deprecated": false, "signature_version": "v1", "target": { "file": "src/com/android/nfc/cardemulation/HostEmulationManager.java" }, "signature_type": "Line" }, { "digest": { "length": 2867.0, "function_hash": "38986059855720312268682811721479119787" }, "id": "ASB-A-268038643-d608cf36", "source": "https://android.googlesource.com/platform/packages/apps/Nfc/+/d6d8f79fd8d605b3cb460895a8e3a11bcf0c22b0", "deprecated": false, "signature_version": "v1", "target": { "file": "src/com/android/nfc/cardemulation/HostEmulationManager.java", "function": "onHostEmulationData" }, "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "287829365925445715483659298781676756817", "93922054408343538861188962430576834619", "199062318457883682300576972194368110861" ] }, "id": "ASB-A-268038643-ee5c0865", "source": "https://android.googlesource.com/platform/packages/apps/Nfc/+/d6d8f79fd8d605b3cb460895a8e3a11bcf0c22b0", "deprecated": false, "signature_version": "v1", "target": { "file": "src/com/android/nfc/NfcService.java" }, "signature_type": "Line" } ], "fixes": [ "https://android.googlesource.com/platform/packages/apps/Nfc/+/d6d8f79fd8d605b3cb460895a8e3a11bcf0c22b0" ], "spl": "2023-09-01", "severity": "High", "types": [ "ID" ] }
{ "vanir_signatures": [ { "digest": { "threshold": 0.9, "line_hashes": [ "287829365925445715483659298781676756817", "93922054408343538861188962430576834619", "199062318457883682300576972194368110861" ] }, "id": "ASB-A-268038643-24a45f01", "source": "https://android.googlesource.com/platform/packages/apps/Nfc/+/d6d8f79fd8d605b3cb460895a8e3a11bcf0c22b0", "deprecated": false, "signature_version": "v1", "target": { "file": "src/com/android/nfc/NfcService.java" }, "signature_type": "Line" }, { "digest": { "threshold": 0.9, "line_hashes": [ "271055080462231680351012234498051702355", "111552660683889881621406641232615389006", "268906614407820728310099806307650203101", "296109978503100678768439480874051096449", "202336758225234101879251178291874369964" ] }, "id": "ASB-A-268038643-69c6ab67", "source": "https://android.googlesource.com/platform/packages/apps/Nfc/+/d6d8f79fd8d605b3cb460895a8e3a11bcf0c22b0", "deprecated": false, "signature_version": "v1", "target": { "file": "src/com/android/nfc/cardemulation/HostEmulationManager.java" }, "signature_type": "Line" }, { "digest": { "length": 2867.0, "function_hash": "38986059855720312268682811721479119787" }, "id": "ASB-A-268038643-9bd9d88f", "source": "https://android.googlesource.com/platform/packages/apps/Nfc/+/d6d8f79fd8d605b3cb460895a8e3a11bcf0c22b0", "deprecated": false, "signature_version": "v1", "target": { "file": "src/com/android/nfc/cardemulation/HostEmulationManager.java", "function": "onHostEmulationData" }, "signature_type": "Function" } ], "fixes": [ "https://android.googlesource.com/platform/packages/apps/Nfc/+/d6d8f79fd8d605b3cb460895a8e3a11bcf0c22b0" ], "spl": "2023-09-01", "severity": "High", "types": [ "ID" ] }
{ "vanir_signatures": [ { "digest": { "length": 3210.0, "function_hash": "339381844574271533070577803431177444728" }, "id": "ASB-A-268038643-0d9e4128", "source": "https://android.googlesource.com/platform/packages/apps/Nfc/+/be02c1590cd11eb6c045bac7c30bd3ec8c22e80c", "deprecated": false, "signature_version": "v1", "target": { "file": "src/com/android/nfc/cardemulation/HostEmulationManager.java", "function": "onHostEmulationData" }, "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "110866618968501505513047877639112891999", "221764726489805107389971049563589762627", "278520023814604683377314502770623374671", "45428150385889769144377600164922333789" ] }, "id": "ASB-A-268038643-366dfb0f", "source": "https://android.googlesource.com/platform/packages/apps/Nfc/+/be02c1590cd11eb6c045bac7c30bd3ec8c22e80c", "deprecated": false, "signature_version": "v1", "target": { "file": "src/com/android/nfc/cardemulation/HostEmulationManager.java" }, "signature_type": "Line" }, { "digest": { "threshold": 0.9, "line_hashes": [ "287829365925445715483659298781676756817", "93922054408343538861188962430576834619", "199062318457883682300576972194368110861" ] }, "id": "ASB-A-268038643-36a40dd0", "source": "https://android.googlesource.com/platform/packages/apps/Nfc/+/be02c1590cd11eb6c045bac7c30bd3ec8c22e80c", "deprecated": false, "signature_version": "v1", "target": { "file": "src/com/android/nfc/NfcService.java" }, "signature_type": "Line" } ], "fixes": [ "https://android.googlesource.com/platform/packages/apps/Nfc/+/be02c1590cd11eb6c045bac7c30bd3ec8c22e80c" ], "spl": "2023-09-01", "severity": "High", "types": [ "ID" ] }
{ "vanir_signatures": [ { "digest": { "threshold": 0.9, "line_hashes": [ "110866618968501505513047877639112891999", "221764726489805107389971049563589762627", "278520023814604683377314502770623374671", "45428150385889769144377600164922333789" ] }, "id": "ASB-A-268038643-404d49c5", "source": "https://android.googlesource.com/platform/packages/apps/Nfc/+/6cb53d963d376b97963120a4d2c7df961789e428", "deprecated": false, "signature_version": "v1", "target": { "file": "src/com/android/nfc/cardemulation/HostEmulationManager.java" }, "signature_type": "Line" }, { "digest": { "length": 3419.0, "function_hash": "282346893729420854136991953993589179214" }, "id": "ASB-A-268038643-6c98d179", "source": "https://android.googlesource.com/platform/packages/apps/Nfc/+/6cb53d963d376b97963120a4d2c7df961789e428", "deprecated": false, "signature_version": "v1", "target": { "file": "src/com/android/nfc/cardemulation/HostEmulationManager.java", "function": "onHostEmulationData" }, "signature_type": "Function" }, { "digest": { "threshold": 0.9, "line_hashes": [ "287829365925445715483659298781676756817", "93922054408343538861188962430576834619", "199062318457883682300576972194368110861" ] }, "id": "ASB-A-268038643-9258a251", "source": "https://android.googlesource.com/platform/packages/apps/Nfc/+/6cb53d963d376b97963120a4d2c7df961789e428", "deprecated": false, "signature_version": "v1", "target": { "file": "src/com/android/nfc/NfcService.java" }, "signature_type": "Line" } ], "fixes": [ "https://android.googlesource.com/platform/packages/apps/Nfc/+/6cb53d963d376b97963120a4d2c7df961789e428" ], "spl": "2023-09-01", "severity": "High", "types": [ "ID" ] }