CVE-2020-0061
- EPSS 0.16%
- Veröffentlicht 10.03.2020 20:15:21
- Zuletzt bearbeitet 21.11.2024 04:52:49
In Pixel Recorder, there is a possible permissions bypass allowing arbitrary apps to record audio. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product...
CVE-2020-0069
- EPSS 1.3%
- Veröffentlicht 10.03.2020 20:15:21
- Zuletzt bearbeitet 23.10.2025 14:52:54
In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to insufficient input sanitization and missing SELinux restrictions. This could lead to local escalation of privilege with no additional execution...
CVE-2020-0010
- EPSS 0.17%
- Veröffentlicht 10.03.2020 20:15:20
- Zuletzt bearbeitet 21.11.2024 04:52:44
In fpc_ta_get_build_info of fpc_ta_kpi.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...
CVE-2020-0011
- EPSS 0.17%
- Veröffentlicht 10.03.2020 20:15:20
- Zuletzt bearbeitet 21.11.2024 04:52:44
In get_auth_result of fpc_ta_hw_auth.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.P...
CVE-2020-0012
- EPSS 0.17%
- Veröffentlicht 10.03.2020 20:15:20
- Zuletzt bearbeitet 21.11.2024 04:52:44
In fpc_ta_pn_get_unencrypted_image of fpc_ta_pn.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exp...
CVE-2020-0029
- EPSS 0.15%
- Veröffentlicht 10.03.2020 20:15:20
- Zuletzt bearbeitet 21.11.2024 04:52:46
In the WifiConfigManager, there is a possible storage of location history which can only be deleted by triggering a factory reset. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed...
- EPSS 0.16%
- Veröffentlicht 10.03.2020 20:15:20
- Zuletzt bearbeitet 21.11.2024 04:52:46
In triggerAugmentedAutofillLocked and related functions of Session.java, it is possible for Augmented Autofill to display sensitive information to the user inappropriately. This could lead to local information disclosure with no additional execution ...
CVE-2020-0032
- EPSS 1.56%
- Veröffentlicht 10.03.2020 20:15:20
- Zuletzt bearbeitet 21.11.2024 04:52:46
In ih264d_release_display_bufs of ih264d_utils.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitat...
CVE-2020-0033
- EPSS 0.2%
- Veröffentlicht 10.03.2020 20:15:20
- Zuletzt bearbeitet 21.11.2024 04:52:47
In CryptoPlugin::decrypt of CryptoPlugin.cpp, there is a possible out of bounds write due to stale pointer. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitati...
CVE-2020-0034
- EPSS 1.9%
- Veröffentlicht 10.03.2020 20:15:20
- Zuletzt bearbeitet 21.11.2024 04:52:47
In vp8_decode_frame of decodeframe.c, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure if error correction were turned on, with no additional execution privileges needed. User i...