Google

Android

7931 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2022-20295

  • EPSS 0.02%
  • Veröffentlicht 12.08.2022 15:15:11
  • Zuletzt bearbeitet 21.11.2024 06:42:32

In ContentService, there is a possible way to check if an account exists on the device due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploi...

5.5

CVE-2022-20296

  • EPSS 0.02%
  • Veröffentlicht 12.08.2022 15:15:11
  • Zuletzt bearbeitet 21.11.2024 06:42:32

In ContentService, there is a possible way to check if an account exists on the device due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploi...

7.8

CVE-2022-20297

  • EPSS 0.02%
  • Veröffentlicht 12.08.2022 15:15:11
  • Zuletzt bearbeitet 21.11.2024 06:42:32

In Settings, there is a possible way to bypass factory reset protections due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitatio...

5.5

CVE-2022-20298

  • EPSS 0.02%
  • Veröffentlicht 12.08.2022 15:15:11
  • Zuletzt bearbeitet 21.11.2024 06:42:32

In ContentService, there is a possible way to check if an account exists on the device due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploi...

5.5

CVE-2022-20299

  • EPSS 0.02%
  • Veröffentlicht 12.08.2022 15:15:11
  • Zuletzt bearbeitet 21.11.2024 06:42:32

In ContentService, there is a possible way to check if the given account exists on the device due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for...

5.5

CVE-2022-20300

  • EPSS 0.02%
  • Veröffentlicht 12.08.2022 15:15:11
  • Zuletzt bearbeitet 21.11.2024 06:42:32

In Content, there is a possible way to check if the given account exists on the device due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploi...

5.5

CVE-2022-20301

  • EPSS 0.02%
  • Veröffentlicht 12.08.2022 15:15:11
  • Zuletzt bearbeitet 21.11.2024 06:42:32

In Content, there is a possible way to check if an account exists on the device due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation....

7.6

CVE-2022-20302

  • EPSS 0.03%
  • Veröffentlicht 12.08.2022 15:15:11
  • Zuletzt bearbeitet 21.11.2024 06:42:32

In Settings, there is a possible way to bypass factory reset protections due to a sandbox escape. This could lead to local escalation of privilege if the attacker has physical access to the device, with no additional execution privileges needed. User...

5.5

CVE-2022-20303

  • EPSS 0.02%
  • Veröffentlicht 12.08.2022 15:15:11
  • Zuletzt bearbeitet 21.11.2024 06:42:33

In ContentService, there is a possible way to determine if an account is on the device without GET_ACCOUNTS permission due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User inte...

5.5

CVE-2022-20304

  • EPSS 0.02%
  • Veröffentlicht 12.08.2022 15:15:11
  • Zuletzt bearbeitet 21.11.2024 06:42:33

In Content, there is a possible way to determinate the user's account due to side channel information disclosure. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.P...