CVE-2022-20190
- EPSS 0.43%
- Veröffentlicht 15.06.2022 14:15:12
- Zuletzt bearbeitet 21.11.2024 06:42:19
Product: AndroidVersions: Android kernelAndroid ID: A-208744915References: N/A
- EPSS 0.48%
- Veröffentlicht 15.06.2022 14:15:12
- Zuletzt bearbeitet 21.11.2024 06:42:19
Product: AndroidVersions: Android kernelAndroid ID: A-209324757References: N/A
CVE-2022-20192
- EPSS 0.11%
- Veröffentlicht 15.06.2022 14:15:12
- Zuletzt bearbeitet 21.11.2024 06:42:19
In grantEmbeddedWindowFocus of WindowManagerService.java, there is a possible way to change an input channel for embedded hierarchy due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges ...
CVE-2022-20193
- EPSS 0.13%
- Veröffentlicht 15.06.2022 14:15:12
- Zuletzt bearbeitet 21.11.2024 06:42:19
In getUniqueUsagesWithLabels of PermissionUsageHelper.java, there is a possible incorrect permission attribution due to a logic error in the code. This could lead to local escalation of privilege by conflating apps with User execution privileges need...
CVE-2022-20194
- EPSS 0.11%
- Veröffentlicht 15.06.2022 14:15:12
- Zuletzt bearbeitet 21.11.2024 06:42:19
In onCreate of ChooseLockGeneric.java, there is a possible permission bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: A...
CVE-2021-39806
- EPSS 0.1%
- Veröffentlicht 15.06.2022 14:15:11
- Zuletzt bearbeitet 21.11.2024 06:20:16
In closef of label_backends_android.c, there is a possible way to corrupt memory due to a double free. This could lead to local escalation of privilege during startup of servicemanager, if an attacker can trigger an initialization failure, with no ad...
CVE-2022-20138
- EPSS 0.21%
- Veröffentlicht 15.06.2022 14:15:11
- Zuletzt bearbeitet 21.11.2024 06:42:13
In ACTION_MANAGED_PROFILE_PROVISIONED of DevicePolicyManagerService.java, there is a possible way for unprivileged app to send MANAGED_PROFILE_PROVISIONED intent due to a missing permission check. This could lead to local escalation of privilege with...
- EPSS 8.58%
- Veröffentlicht 15.06.2022 14:15:11
- Zuletzt bearbeitet 21.11.2024 06:42:13
In read_multi_rsp of gatt_sr.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitati...
- EPSS 0.14%
- Veröffentlicht 15.06.2022 14:15:11
- Zuletzt bearbeitet 21.11.2024 06:42:14
In ip_check_mc_rcu of igmp.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege when opening and closing inet sockets with no additional execution privileges needed. User interaction is not n...
CVE-2022-20142
- EPSS 0.23%
- Veröffentlicht 15.06.2022 14:15:11
- Zuletzt bearbeitet 21.11.2024 06:42:14
In createFromParcel of GeofenceHardwareRequestParcelable.java, there is a possible arbitrary code execution due to parcel mismatch. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is n...