CVE-2020-0451
- EPSS 1.87%
- Veröffentlicht 10.11.2020 13:15:12
- Zuletzt bearbeitet 21.11.2024 04:53:32
In sbrDecoder_AssignQmfChannels2SbrChannels of sbrdecoder.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed ...
CVE-2020-0452
- EPSS 3.19%
- Veröffentlicht 10.11.2020 13:15:12
- Zuletzt bearbeitet 21.11.2024 04:53:32
In exif_entry_get_value of exif-entry.c, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution if a third party app used this library to process remote image data with no additional execution pri...
CVE-2020-0453
- EPSS 0.25%
- Veröffentlicht 10.11.2020 13:15:12
- Zuletzt bearbeitet 21.11.2024 04:53:32
In updateNotification of BeamTransferManager.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploit...
CVE-2020-0409
- EPSS 0.25%
- Veröffentlicht 10.11.2020 13:15:11
- Zuletzt bearbeitet 21.11.2024 04:53:28
In create of FileMap.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: An...
CVE-2020-0418
- EPSS 0.26%
- Veröffentlicht 10.11.2020 13:15:11
- Zuletzt bearbeitet 21.11.2024 04:53:29
In getPermissionInfosForGroup of Utils.java, there is a logic error. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android I...
CVE-2020-0424
- EPSS 0.16%
- Veröffentlicht 10.11.2020 13:15:11
- Zuletzt bearbeitet 21.11.2024 04:53:29
In send_vc of res_send.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Produ...
CVE-2020-0437
- EPSS 0.14%
- Veröffentlicht 10.11.2020 13:15:11
- Zuletzt bearbeitet 21.11.2024 04:53:31
In CellBroadcastReceiver's intent handlers, there is a possible denial of service due to a missing permission check. This could lead to local denial of service of emergency alerts with no additional execution privileges needed. User interaction is no...
CVE-2020-0438
- EPSS 0.16%
- Veröffentlicht 10.11.2020 13:15:11
- Zuletzt bearbeitet 21.11.2024 04:53:31
In the AIBinder_Class constructor of ibinder.cpp, there is a possible arbitrary code execution due to uninitialized data. This could lead to local escalation of privilege if a process were using libbinder_ndk in a vulnerable way with no additional ex...
CVE-2020-0439
- EPSS 0.21%
- Veröffentlicht 10.11.2020 13:15:11
- Zuletzt bearbeitet 21.11.2024 04:53:31
In generatePackageInfo of PackageManagerService.java, there is a possible permissions bypass due to an incorrect permission check. This could lead to local escalation of privilege that allows instant apps access to permissions not allowed for instant...
CVE-2020-28340
- EPSS 0.45%
- Veröffentlicht 08.11.2020 05:15:11
- Zuletzt bearbeitet 21.11.2024 05:22:37
An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), Q(10.0), and R(11.0) software. Attackers can bypass Factory Reset Protection (FRP) via Secure Folder. The Samsung ID is SVE-2020-18546 (November 2020).