CVE-2020-0077
- EPSS 0.14%
- Veröffentlicht 17.04.2020 19:15:13
- Zuletzt bearbeitet 21.11.2024 04:52:51
In authorize_enroll of the FPC IRIS TrustZone app, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for explo...
CVE-2020-0078
- EPSS 0.16%
- Veröffentlicht 17.04.2020 19:15:13
- Zuletzt bearbeitet 21.11.2024 04:52:51
In releaseSecureStops of DrmPlugin.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploit...
CVE-2020-0079
- EPSS 0.16%
- Veröffentlicht 17.04.2020 19:15:13
- Zuletzt bearbeitet 21.11.2024 04:52:52
In decrypt_1_2 of CryptoPlugin.cpp, there is a possible out of bounds write due to stale pointer. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product...
CVE-2020-0080
- EPSS 0.49%
- Veröffentlicht 17.04.2020 19:15:13
- Zuletzt bearbeitet 21.11.2024 04:52:52
In onOpActiveChanged and related methods of AppOpsControllerImpl.java, there is a possible way to display an app overlaying other apps without the notification icon that it's overlaying. This could lead to local escalation of privilege with User exec...
CVE-2020-0081
- EPSS 0.17%
- Veröffentlicht 17.04.2020 19:15:13
- Zuletzt bearbeitet 21.11.2024 04:52:52
In finalize of AssetManager.java, there is possible memory corruption due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: Andr...
CVE-2020-0082
- EPSS 0.41%
- Veröffentlicht 17.04.2020 19:15:13
- Zuletzt bearbeitet 21.11.2024 04:52:52
In ExternalVibration of ExternalVibration.java, there is a possible activation of an arbitrary intent due to unsafe deserialization. This could lead to local escalation of privilege to system_server with no additional execution privileges needed. Use...
CVE-2020-11873
- EPSS 0.44%
- Veröffentlicht 17.04.2020 14:15:18
- Zuletzt bearbeitet 21.11.2024 04:58:47
An issue was discovered on LG mobile devices with Android OS 7.2, 8.0, 8.1, 9, and 10 software. A stack-based buffer overflow in the logging tool could allow an attacker to gain privileges. The LG ID is LVE-SMP-200005 (April 2020).
CVE-2020-11874
- EPSS 0.36%
- Veröffentlicht 17.04.2020 14:15:18
- Zuletzt bearbeitet 21.11.2024 04:58:47
An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9, and 10 software. Attackers can bypass Factory Reset Protection (FRP). The LG ID is LVE-SMP-200004 (March 2020).
CVE-2020-11875
- EPSS 0.18%
- Veröffentlicht 17.04.2020 14:15:18
- Zuletzt bearbeitet 21.11.2024 04:58:48
An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10.0 (MTK chipsets) software. The MTK kernel does not properly implement exception handling, allowing an attacker to gain privileges. The LG ID is LVE-SMP-200001 (Februar...
CVE-2019-20783
- EPSS 0.43%
- Veröffentlicht 17.04.2020 14:15:17
- Zuletzt bearbeitet 21.11.2024 04:39:21
An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, and 8.1 (North America CDMA) software. The LTE protocol implementation allows a bypass of AKA (Authentication and Key Agreement). The LG ID is LVE-SMP-180014 (February 2...