What is the severity of CVE-2019-15469?

CVE-2019-15469 is classified as a high severity vulnerability due to its potential for unauthorized access and manipulation.

How do I fix CVE-2019-15469?

To mitigate CVE-2019-15469, ensure that all applications are updated to their latest versions and remove any unnecessary pre-installed apps.

What devices are affected by CVE-2019-15469?

CVE-2019-15469 specifically affects the Xiaomi Mi Pad 4 running specific versions of Android related to the pre-installed Qualcomm Call Enhancement app.

Is CVE-2019-15469 actively being exploited?

As of the time of reporting, there are no confirmed cases of active exploitation of CVE-2019-15469, but users should remain vigilant.

What kind of data can be exposed due to CVE-2019-15469?

CVE-2019-15469 can potentially expose sensitive call-related data due to vulnerabilities in the pre-installed app.

Vulnerability/
CVE-2019-15469

medium

5.5

14/11/2019

5/8/2024

CVE-2019-15469

First published: Thu Nov 14 2019(Updated: )

The Xiaomi Mi Pad 4 Android device with a build fingerprint of Xiaomi/clover/clover:8.1.0/OPM1.171019.019/V9.6.26.0.ODJCNFD:user/release-keys contains a pre-installed app with a package name of com.qualcomm.qti.callenhancement app (versionCode=27, versionName=8.1.0) that allows other pre-installed apps to perform microphone audio recording via an accessible app component. This capability can be accessed by any pre-installed app on the device which can obtain signatureOrSystem permissions that are required by other other pre-installed apps that export their capabilities to other pre-installed app. This app allows a third-party app to use its open interface to record telephone calls to external storage.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Mi Pad 4
Mi Pad 4 Firmware

Never miss a vulnerability like this again

Reference Links

https://www.kryptowire.com/android-firmware-2019/

Frequently Asked Questions

What is the severity of CVE-2019-15469?
CVE-2019-15469 is classified as a high severity vulnerability due to its potential for unauthorized access and manipulation.
How do I fix CVE-2019-15469?
To mitigate CVE-2019-15469, ensure that all applications are updated to their latest versions and remove any unnecessary pre-installed apps.
What devices are affected by CVE-2019-15469?
CVE-2019-15469 specifically affects the Xiaomi Mi Pad 4 running specific versions of Android related to the pre-installed Qualcomm Call Enhancement app.
Is CVE-2019-15469 actively being exploited?
As of the time of reporting, there are no confirmed cases of active exploitation of CVE-2019-15469, but users should remain vigilant.
What kind of data can be exposed due to CVE-2019-15469?
CVE-2019-15469 can potentially expose sensitive call-related data due to vulnerabilities in the pre-installed app.

agent/softwarecombine
agent/type
collector/mitre-cve
source/MITRE
agent/severity
agent/references
agent/last-modified-date
agent/author
agent/first-publish-date
agent/event
agent/description
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/mi
canonical/mi pad 4
canonical/mi pad 4 firmware

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.