Google

Android

7895 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2020-0104

  • EPSS 0.02%
  • Veröffentlicht 14.05.2020 21:15:12
  • Zuletzt bearbeitet 21.11.2024 04:52:54

In onShowingStateChanged of KeyguardStateMonitor.java, there is a possible inappropriate read due to a logic error. This could lead to local information disclosure of keyguard-protected data with no additional execution privileges needed. User intera...

7.8

CVE-2020-0105

  • EPSS 0.01%
  • Veröffentlicht 14.05.2020 21:15:12
  • Zuletzt bearbeitet 21.11.2024 04:52:54

In onKeyguardVisibilityChanged of key_store_service.cpp, there is a missing permission check. This could lead to local escalation of privilege, allowing apps to use keyguard-bound keys when the screen is locked, with no additional execution privilege...

5.5

CVE-2020-0106

  • EPSS 0.02%
  • Veröffentlicht 14.05.2020 21:15:12
  • Zuletzt bearbeitet 21.11.2024 04:52:55

In getCellLocation of PhoneInterfaceManager.java, there is a possible permission bypass due to a missing SDK version check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed...

7.8

CVE-2020-0109

  • EPSS 0.01%
  • Veröffentlicht 14.05.2020 21:15:12
  • Zuletzt bearbeitet 21.11.2024 04:52:55

In simulatePackageSuspendBroadcast of NotificationManagerService.java, there is a missing permission check. This could lead to local escalation of privilege by creating fake system notifications with no additional execution privileges needed. User in...

7.8

CVE-2020-0110

  • EPSS 0.02%
  • Veröffentlicht 14.05.2020 21:15:12
  • Zuletzt bearbeitet 21.11.2024 04:52:55

In psi_write of psi.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: An...

6.7

CVE-2020-0220

  • EPSS 0.02%
  • Veröffentlicht 14.05.2020 21:15:12
  • Zuletzt bearbeitet 21.11.2024 04:53:07

In crus_afe_callback of msm-cirrus-playback.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploit...

9.8

CVE-2020-0221

  • EPSS 0.15%
  • Veröffentlicht 14.05.2020 21:15:12
  • Zuletzt bearbeitet 21.11.2024 04:53:08

Airbrush FW's scratch memory allocator is susceptible to numeric overflow. When the overflow occurs, the next allocation could potentially return a pointer within the previous allocation's memory, which could lead to improper memory access.Product: A...

7.8

CVE-2020-0024

  • EPSS 0.01%
  • Veröffentlicht 14.05.2020 21:15:11
  • Zuletzt bearbeitet 21.11.2024 04:52:46

In onCreate of SettingsBaseActivity.java, there is a possible unauthorized setting modification due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed f...

5.5

CVE-2020-0064

  • EPSS 0.02%
  • Veröffentlicht 14.05.2020 21:15:11
  • Zuletzt bearbeitet 21.11.2024 04:52:50

An improper authorization while processing the provisioning data.Product: AndroidVersions: Android SoCAndroid ID: A-149866855

5.5

CVE-2020-0065

  • EPSS 0.02%
  • Veröffentlicht 14.05.2020 21:15:11
  • Zuletzt bearbeitet 21.11.2024 04:52:50

An improper authorization in the receiver component of the Android Suite Daemon.Product: AndroidVersions: Android SoCAndroid ID: A-149813448