Google

Android

8158 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.11%
  • Veröffentlicht 15.12.2021 19:15:12
  • Zuletzt bearbeitet 21.11.2024 05:43:20

In phNxpNHal_DtaUpdate of phNxpNciHal_dta.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for explo...

  • EPSS 0.1%
  • Veröffentlicht 15.12.2021 19:15:12
  • Zuletzt bearbeitet 21.11.2024 05:43:20

In getSerialForPackage of DeviceIdentifiersPolicyService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure wi...

  • EPSS 0.11%
  • Veröffentlicht 15.12.2021 19:15:12
  • Zuletzt bearbeitet 21.11.2024 05:43:20

In isRequestPinItemSupported of ShortcutService.java, there is a possible cross-user leak of packages in which the default launcher supports requests to create pinned shortcuts due to a permissions bypass. This could lead to local information disclos...

  • EPSS 0.12%
  • Veröffentlicht 15.12.2021 19:15:12
  • Zuletzt bearbeitet 21.11.2024 05:43:20

In enqueueNotificationInternal of NotificationManagerService.java, there is a possible way to run a foreground service without showing a notification due to improper input validation. This could lead to local escalation of privilege with no additiona...

  • EPSS 0.1%
  • Veröffentlicht 15.12.2021 19:15:12
  • Zuletzt bearbeitet 21.11.2024 05:43:20

In getOrganizationNameForUser of DevicePolicyManagerService.java, there is a possible organization name disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User...

  • EPSS 0.11%
  • Veröffentlicht 15.12.2021 19:15:12
  • Zuletzt bearbeitet 21.11.2024 05:43:20

In createAdminSupportIntent of DevicePolicyManagerService.java, there is a possible disclosure of information about installed device/profile owner package name due to side channel information disclosure. This could lead to local information disclosur...

  • EPSS 0.13%
  • Veröffentlicht 15.12.2021 19:15:12
  • Zuletzt bearbeitet 21.11.2024 05:43:21

In onNullBinding of ManagedServices.java, there is a possible permission bypass due to an incorrectly unbound service. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

  • EPSS 0.1%
  • Veröffentlicht 15.12.2021 19:15:12
  • Zuletzt bearbeitet 21.11.2024 05:43:21

In onReceive of AlertReceiver.java, there is a possible way to dismiss system dialog due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed fo...

  • EPSS 0.11%
  • Veröffentlicht 15.12.2021 19:15:12
  • Zuletzt bearbeitet 21.11.2024 05:43:21

In hasGrantedPolicy of DevicePolicyManagerService.java, there is a possible information disclosure about the device owner, profile owner, or device admin due to a logic error in the code. This could lead to local information disclosure with no additi...

  • EPSS 0.11%
  • Veröffentlicht 15.12.2021 19:15:12
  • Zuletzt bearbeitet 21.11.2024 05:43:21

In getNeighboringCellInfo of PhoneInterfaceManager.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no ...