Google

Android

8158 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.26%
  • Veröffentlicht 11.01.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:42:30

In appendEventsToCacheLocked of SensorEventConnection.cpp, there is a possible out of bounds write due to a use-after-free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not neede...

  • EPSS 0.26%
  • Veröffentlicht 11.01.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:42:30

In checkCallerIsSystemOr of CompanionDeviceManagerService.java, there is a possible way to get a nearby Bluetooth device's MAC address without appropriate permissions due to a permissions bypass. This could lead to local escalation of privilege that ...

  • EPSS 0.1%
  • Veröffentlicht 11.01.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:42:30

In is_device_locked and set_device_locked of keystore_keymaster_enforcement.h, there is a possible bypass of lockscreen requirements for keyguard bound keys due to a race condition. This could lead to local information disclosure with no additional e...

  • EPSS 0.15%
  • Veröffentlicht 11.01.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:42:30

In enforceDumpPermissionForPackage of ActivityManagerService.java, there is a possible way to determine if a package is installed due to side channel information disclosure. This could lead to local information disclosure with no additional execution...

  • EPSS 0.16%
  • Veröffentlicht 11.01.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:42:30

In onCreate of SlicePermissionActivity.java, there is a possible misleading string displayed due to improper input validation. This could lead to local information disclosure with User execution privileges needed. User interaction is needed for explo...

  • EPSS 1.59%
  • Veröffentlicht 11.01.2021 22:15:12
  • Zuletzt bearbeitet 21.11.2024 04:53:34

In reassemble_and_dispatch of packet_fragmenter.cc, there is a possible way to inject packets into an encrypted Bluetooth connection due to improper input validation. This could lead to remote escalation of privilege between two Bluetooth devices by ...

  • EPSS 0.16%
  • Veröffentlicht 11.01.2021 22:15:12
  • Zuletzt bearbeitet 21.11.2024 05:42:27

In ged, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Andr...

  • EPSS 0.12%
  • Veröffentlicht 11.01.2021 22:15:12
  • Zuletzt bearbeitet 21.11.2024 05:42:27

In dispatchGraphTerminationMessage() of packages/services/Car/computepipe/runner/graph/StreamSetObserver.cpp, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with User execution privileges ...

Exploit
  • EPSS 0.21%
  • Veröffentlicht 11.01.2021 21:15:13
  • Zuletzt bearbeitet 21.11.2024 05:20:44

In onAuthenticated of AuthenticationClient.java, there is a possible tapjacking attack when requesting the user's fingerprint due to an overlaid window. This could lead to local escalation of privilege with no additional execution privileges needed. ...

  • EPSS 0.17%
  • Veröffentlicht 11.01.2021 21:15:13
  • Zuletzt bearbeitet 21.11.2024 05:42:32

In tun_get_user of tun.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges required. User interaction is not required for exploitation. Product: Android; Ve...