Google

Android

8158 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.25%
  • Veröffentlicht 11.06.2020 15:15:12
  • Zuletzt bearbeitet 21.11.2024 04:52:58

In multiple locations of Parcel.cpp, there is a possible out-of-bounds write due to an integer overflow. This could lead to local escalation of privilege in the system server with no additional execution privileges needed. User interaction is not nee...

  • EPSS 0.23%
  • Veröffentlicht 11.06.2020 15:15:12
  • Zuletzt bearbeitet 21.11.2024 04:52:58

In setIPv6AddrGenMode of NetworkManagementService.java, there is a possible bypass of networking permissions due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User inte...

  • EPSS 1.36%
  • Veröffentlicht 11.06.2020 15:15:12
  • Zuletzt bearbeitet 21.11.2024 04:52:58

In get_element_attr_rsp of btif_rc.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution if bluetoothtbd were used, which it isn't in typical Android platforms, with no additional executio...

  • EPSS 0.14%
  • Veröffentlicht 11.06.2020 15:15:12
  • Zuletzt bearbeitet 21.11.2024 04:52:58

In NDEF_MsgValidate of ndef_utils.c, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure if a malformed NFC tag is provided by the firmware. System execution privileges are needed and use...

  • EPSS 0.36%
  • Veröffentlicht 10.06.2020 18:15:10
  • Zuletzt bearbeitet 21.11.2024 04:52:55

In sendCaptureResult of Camera3OutputUtils.cpp, there is a possible out of bounds read due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploit...

  • EPSS 0.34%
  • Veröffentlicht 10.06.2020 18:15:10
  • Zuletzt bearbeitet 21.11.2024 04:52:55

In onCreateSliceProvider of KeyguardSliceProvider.java, there is a possible confused deputy due to a PendingIntent error. This could lead to local escalation of privilege that allows actions performed as the System UI, with no additional execution pr...

  • EPSS 0.16%
  • Veröffentlicht 10.06.2020 18:15:10
  • Zuletzt bearbeitet 21.11.2024 04:52:55

In verifyIntentFiltersIfNeeded of PackageManagerService.java, there is a possible settings bypass allowing an app to become the default handler for arbitrary domains. This could lead to local escalation of privilege with User execution privileges nee...

  • EPSS 0.18%
  • Veröffentlicht 10.06.2020 18:15:10
  • Zuletzt bearbeitet 21.11.2024 04:52:56

In checkSystemLocationAccess of LocationAccessPolicy.java, there is a possible bypass of user profile isolation due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interact...

  • EPSS 1.58%
  • Veröffentlicht 10.06.2020 18:15:10
  • Zuletzt bearbeitet 21.11.2024 04:52:56

In aes_cmac of aes_cmac.cc, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution in the bluetooth server with no additional execution privileges needed. User interaction is not needed for exploi...

  • EPSS 0.18%
  • Veröffentlicht 10.06.2020 18:15:10
  • Zuletzt bearbeitet 21.11.2024 04:52:56

In addListener of RegionSamplingThread.cpp, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for expl...