CVE-2019-2197
- EPSS 0.16%
- Veröffentlicht 13.11.2019 18:15:11
- Zuletzt bearbeitet 21.11.2024 04:40:24
In processPhonebookAccess of CachedBluetoothDevice.java, there is a possible permission bypass due to an insecure default value. This could lead to local information disclosure of the user's contact list with no additional execution privileges needed...
CVE-2019-2198
- EPSS 0.4%
- Veröffentlicht 13.11.2019 18:15:11
- Zuletzt bearbeitet 21.11.2024 04:40:25
In Download Provider, there is a possible SQL injection vulnerability. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8...
CVE-2019-2199
- EPSS 0.18%
- Veröffentlicht 13.11.2019 18:15:11
- Zuletzt bearbeitet 21.11.2024 04:40:25
In createSessionInternal of PackageInstallerService.java, there is a possible permissions bypass. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: Andro...
CVE-2019-2201
- EPSS 2.46%
- Veröffentlicht 13.11.2019 18:15:11
- Zuletzt bearbeitet 21.11.2024 04:40:25
In generate_jsimd_ycc_rgb_convert_neon of jsimd_arm64_neon.S, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution in an unprivileged process with no additional execution privileges needed. U...
CVE-2019-2202
- EPSS 0.17%
- Veröffentlicht 13.11.2019 18:15:11
- Zuletzt bearbeitet 21.11.2024 04:40:25
In CryptoPlugin::decrypt of CryptoPlugin.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for e...
CVE-2019-2203
- EPSS 0.17%
- Veröffentlicht 13.11.2019 18:15:11
- Zuletzt bearbeitet 21.11.2024 04:40:25
In CryptoPlugin::decrypt of CryptoPlugin.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for e...
- EPSS 1.34%
- Veröffentlicht 13.11.2019 18:15:11
- Zuletzt bearbeitet 21.11.2024 04:40:25
In FindSharedFunctionInfo of objects.cc, there is a possible out of bounds read due to a mistake in AST traversal. This could lead to remote code execution in the pacprocessor with no additional execution privileges needed. User interaction is not ne...
- EPSS 2.86%
- Veröffentlicht 13.11.2019 18:15:11
- Zuletzt bearbeitet 21.11.2024 04:40:25
In ProxyResolverV8::SetPacScript of proxy_resolver_v8.cc, there is a possible memory corruption due to a use after free. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for explo...
CVE-2019-2206
- EPSS 1.18%
- Veröffentlicht 13.11.2019 18:15:11
- Zuletzt bearbeitet 21.11.2024 04:40:25
In rw_i93_sm_set_read_only of rw_i93.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over NFC with no additional execution privileges needed. User interaction is needed for exploitat...
CVE-2019-2207
- EPSS 0.18%
- Veröffentlicht 13.11.2019 18:15:11
- Zuletzt bearbeitet 21.11.2024 04:40:26
In nfa_hci_handle_admin_gate_rsp of nfa_hci_act.cc, there is a possible out of bound write due to missing bounds checks. This could lead to local escalation of privilege with system execution privileges needed. User interaction is not needed for expl...