CVE-2022-25815
- EPSS 0.1%
- Veröffentlicht 10.03.2022 17:47:17
- Zuletzt bearbeitet 21.11.2024 06:53:03
PendingIntent hijacking vulnerability in Weather application prior to SMR Mar-2022 Release 1 allows local attackers to perform unauthorized action without permission via hijacking the PendingIntent.
CVE-2022-25814
- EPSS 0.1%
- Veröffentlicht 10.03.2022 17:47:16
- Zuletzt bearbeitet 21.11.2024 06:53:03
PendingIntent hijacking vulnerability in Wearable Manager Installer prior to SMR Mar-2022 Release 1 allows local attackers to perform unauthorized action without permission via hijacking the PendingIntent.
CVE-2022-24932
- EPSS 0.11%
- Veröffentlicht 10.03.2022 17:46:57
- Zuletzt bearbeitet 21.11.2024 06:51:24
Improper Protection of Alternate Path vulnerability in Setup wizard process prior to SMR Mar-2022 Release 1 allows physical attacker package installation before finishing Setup wizard.
CVE-2022-24931
- EPSS 0.12%
- Veröffentlicht 10.03.2022 17:46:56
- Zuletzt bearbeitet 21.11.2024 06:51:24
Improper access control vulnerability in dynamic receiver in ApkInstaller prior to SMR MAR-2022 Release allows unauthorized attackers to execute arbitrary activity without a proper permission
CVE-2022-24929
- EPSS 0.1%
- Veröffentlicht 10.03.2022 17:46:55
- Zuletzt bearbeitet 21.11.2024 06:51:24
Unprotected Activity in AppLock prior to SMR Mar-2022 Release 1 allows attacker to change the list of locked app without authentication.
CVE-2022-24928
- EPSS 0.12%
- Veröffentlicht 10.03.2022 17:46:54
- Zuletzt bearbeitet 21.11.2024 06:51:24
Security misconfiguration of RKP in kernel prior to SMR Mar-2022 Release 1 allows a system not to be protected by RKP.
CVE-2022-20059
- EPSS 0.13%
- Veröffentlicht 10.03.2022 17:45:07
- Zuletzt bearbeitet 21.11.2024 06:42:03
In preloader (usb), there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User i...
CVE-2022-20060
- EPSS 0.13%
- Veröffentlicht 10.03.2022 17:45:07
- Zuletzt bearbeitet 21.11.2024 06:42:03
In preloader (usb), there is a possible permission bypass due to a missing proper image authentication. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges n...
CVE-2022-20057
- EPSS 0.12%
- Veröffentlicht 10.03.2022 17:45:06
- Zuletzt bearbeitet 21.11.2024 06:42:02
In btif, there is a possible memory corruption due to incorrect error handling. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS06271186; Issue ID: A...
CVE-2022-20058
- EPSS 0.13%
- Veröffentlicht 10.03.2022 17:45:06
- Zuletzt bearbeitet 21.11.2024 06:42:03
In preloader (usb), there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User i...