CVE-2022-20123
- EPSS 0.83%
- Veröffentlicht 15.06.2022 13:15:08
- Zuletzt bearbeitet 21.11.2024 06:42:12
In phNciNfc_RecvMfResp of phNxpExtns_MifareStd.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed ...
CVE-2022-20124
- EPSS 0.15%
- Veröffentlicht 15.06.2022 13:15:08
- Zuletzt bearbeitet 21.11.2024 06:42:12
In deletePackageX of DeletePackageHelper.java, there is a possible way for a Guest user to reset pre-loaded applications for other users due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privil...
CVE-2022-20125
- EPSS 0.13%
- Veröffentlicht 15.06.2022 13:15:08
- Zuletzt bearbeitet 21.11.2024 06:42:12
In GBoard, there is a possible way to bypass factory reset protections due to a sandbox escape. This could lead to local escalation of privilege if an attacker has physical access to the device, with no additional execution privileges needed. User in...
CVE-2022-20126
- EPSS 0.24%
- Veröffentlicht 15.06.2022 13:15:08
- Zuletzt bearbeitet 21.11.2024 06:42:12
In setScanMode of AdapterService.java, there is a possible way to enable Bluetooth discovery mode without user interaction due to a missing permission check. This could lead to local escalation of privilege with User execution privileges needed. User...
- EPSS 6.66%
- Veröffentlicht 15.06.2022 13:15:08
- Zuletzt bearbeitet 21.11.2024 06:42:12
In ce_t4t_data_cback of ce_t4t.cc, there is a possible out of bounds write due to a double free. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: Android...
CVE-2022-20129
- EPSS 0.1%
- Veröffentlicht 15.06.2022 13:15:08
- Zuletzt bearbeitet 21.11.2024 06:42:12
In registerPhoneAccount of PhoneAccountRegistrar.java, there is a possible way to prevent the user from selecting a phone account due to improper input validation. This could lead to local denial of service with no additional execution privileges nee...
- EPSS 8.39%
- Veröffentlicht 15.06.2022 13:15:08
- Zuletzt bearbeitet 21.11.2024 06:42:12
In transportDec_OutOfBandConfig of tpdec_lib.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for explo...
CVE-2022-20131
- EPSS 0.83%
- Veröffentlicht 15.06.2022 13:15:08
- Zuletzt bearbeitet 21.11.2024 06:42:13
In nci_proc_rf_management_ntf of nci_hrcv.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for ex...
CVE-2022-20132
- EPSS 0.2%
- Veröffentlicht 15.06.2022 13:15:08
- Zuletzt bearbeitet 21.11.2024 06:42:13
In lg_probe and related functions of hid-lg.c and other USB HID files, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure if a malicious USB HID device were plugged in, with no add...
CVE-2022-20133
- EPSS 0.14%
- Veröffentlicht 15.06.2022 13:15:08
- Zuletzt bearbeitet 21.11.2024 06:42:13
In setDiscoverableTimeout of AdapterService.java, there is a possible bypass of user interaction due to a missing permission check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed...