Google

Android

8158 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.17%
  • Veröffentlicht 11.01.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:42:28

In updatePermissionSourcePackage of PermissionManagerService.java, there is a possible automatic runtime permission grant due to a confused deputy. This could lead to local escalation of privilege allowing a malicious app to silently gain access to a...

  • EPSS 0.44%
  • Veröffentlicht 11.01.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:42:28

In ReadLogicalParts of basicmbr.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitatio...

  • EPSS 0.16%
  • Veröffentlicht 11.01.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:42:28

In onCreate of grantCredentialsPermissionActivity, there is a confused deputy. This could lead to local information disclosure and account access with no additional execution privileges needed. User interaction is needed for exploitation. Product: An...

  • EPSS 0.16%
  • Veröffentlicht 11.01.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:42:28

In LazyServiceRegistrar of LazyServiceRegistrar.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for ex...

  • EPSS 1.1%
  • Veröffentlicht 11.01.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:42:28

In ElementaryStreamQueue::dequeueAccessUnitH264() of ESQueue.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction...

  • EPSS 1.1%
  • Veröffentlicht 11.01.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:42:28

In WAVSource::read of WAVExtractor.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. ...

  • EPSS 1.68%
  • Veröffentlicht 11.01.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:42:29

In isWordBreakAfter of LayoutUtils.cpp, there is a possible way to slow or crash a TextView due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed f...

  • EPSS 0.28%
  • Veröffentlicht 11.01.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:42:29

In onCreate of GrantCredentialsPermissionActivity.java, there is a possible way to convince the user to grant an app access to an account due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privile...

  • EPSS 3.06%
  • Veröffentlicht 11.01.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:42:29

In avrc_pars_vendor_cmd of avrc_pars_tg.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed ...

  • EPSS 0.2%
  • Veröffentlicht 11.01.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:42:30

In createOrUpdate of Permission.java and related code, there is possible permission escalation due to a logic error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for explo...