Genymotion Desktop up to 3.2.0 Clipboard information disclosure

entryeditHistoryDiffjsonxmlCTI

A vulnerability was found in Genymotion Desktop up to 3.2.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Clipboard Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Field02/22/2021 11:13 PM03/04/2021 11:07 AM03/04/2021 11:09 AM
vendorGenymotionGenymotionGenymotion
nameDesktopDesktopDesktop
version<=3.2.0<=3.2.0<=3.2.0
componentClipboard HandlerClipboard HandlerClipboard Handler
cwe200 (information disclosure)200 (information disclosure)200 (information disclosure)
risk111
cvss3_vuldb_avLLL
cvss3_vuldb_acLLL
cvss3_vuldb_prLLL
cvss3_vuldb_uiNNN
cvss3_vuldb_sUUU
cvss3_vuldb_cLLL
cvss3_vuldb_iNNN
cvss3_vuldb_aNNN
urlhttps://github.com/eybisi/misc/tree/main/clipwatchhttps://github.com/eybisi/misc/tree/main/clipwatchhttps://github.com/eybisi/misc/tree/main/clipwatch
disputed111
cveCVE-2021-27549CVE-2021-27549CVE-2021-27549
date1613948400 (02/22/2021)1613948400 (02/22/2021)1613948400 (02/22/2021)
cvss2_vuldb_avLLL
cvss2_vuldb_acLLL
cvss2_vuldb_ciPPP
cvss2_vuldb_iiNNN
cvss2_vuldb_aiNNN
cvss2_vuldb_auSSS
cvss2_vuldb_eNDNDND
cvss2_vuldb_rlNDNDND
cvss2_vuldb_rcNDNDND
cvss3_vuldb_eXXX
cvss3_vuldb_rlXXX
cvss3_vuldb_rcXXX
cvss2_vuldb_basescore1.71.71.7
cvss2_vuldb_tempscore1.71.71.7
cvss3_vuldb_basescore3.33.33.3
cvss3_vuldb_tempscore3.33.33.3
cvss3_meta_basescore3.33.34.3
cvss3_meta_tempscore3.33.34.3
price_0day$0-$5k$0-$5k$0-$5k
videolinkhttps://www.youtube.com/watch?v=Tod8Q6sf0P8https://www.youtube.com/watch?v=Tod8Q6sf0P8https://www.youtube.com/watch?v=Tod8Q6sf0P8
cve_assigned16139484001613948400
cve_nvd_summary** DISPUTED ** Genymotion Desktop through 3.2.0 leaks the host's clipboard data to the Android application by default. NOTE: the vendor's position is that this is intended behavior that can be changed through the Settings > Device screen.** DISPUTED ** Genymotion Desktop through 3.2.0 leaks the host's clipboard data to the Android application by default. NOTE: the vendor's position is that this is intended behavior that can be changed through the Settings > Device screen.
cvss3_nvd_avN
cvss3_nvd_acL
cvss3_nvd_prN
cvss3_nvd_uiN
cvss3_nvd_sU
cvss3_nvd_cL
cvss3_nvd_iN
cvss3_nvd_aN
cvss2_nvd_avN
cvss2_nvd_acL
cvss2_nvd_auN
cvss2_nvd_ciP
cvss2_nvd_iiN
cvss2_nvd_aiN
cvss2_nvd_basescore5.0
cvss3_nvd_basescore5.3

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!