CVE-2020-35555 : What You Need to Know

An issue was discovered on LG mobile devices with Android OS 10 software where the device does not lock upon disconnection of a call with the cover closed.

Understanding CVE-2020-35555

This CVE identifies a security vulnerability on LG mobile devices running Android OS 10 that affects the device's locking mechanism.

What is CVE-2020-35555?

The vulnerability in LG mobile devices with Android OS 10 allows the device to remain unlocked after ending a call with the cover closed in a dual-screen configuration.

The Impact of CVE-2020-35555

This vulnerability could potentially lead to unauthorized access to the device and compromise user data and privacy.

Technical Details of CVE-2020-35555

This section provides more technical insights into the vulnerability.

Vulnerability Description

The issue occurs specifically when a call is disconnected with the cover closed in a dual-screen setup, failing to trigger the device lock.

Affected Systems and Versions

LG mobile devices with Android OS 10

Exploitation Mechanism

An attacker could exploit this vulnerability by gaining physical access to the device after a call ends with the cover closed, bypassing the lock screen.

Mitigation and Prevention

It is crucial to take immediate steps to address and prevent the exploitation of this vulnerability.

Immediate Steps to Take

Avoid using the device in public or unsecured environments after ending a call with the cover closed.
Regularly check for software updates and security patches from LG.

Long-Term Security Practices

Enable additional security measures such as PIN, pattern, or biometric authentication on the device.
Be cautious when handling the device in potentially risky situations.

Patching and Updates

Stay informed about security updates released by LG for your specific device model and apply them promptly.