CVE-2019-2181
- EPSS 0.41%
- Veröffentlicht 05.09.2019 22:15:12
- Zuletzt bearbeitet 21.11.2024 04:40:23
In binder_transaction of binder.c in the Android kernel, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed f...
CVE-2019-9254
- EPSS 0.42%
- Veröffentlicht 05.09.2019 22:15:12
- Zuletzt bearbeitet 21.11.2024 04:51:18
In readArgumentList of zygote.java in Android 10, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed ...
CVE-2019-2103
- EPSS 0.16%
- Veröffentlicht 05.09.2019 22:15:11
- Zuletzt bearbeitet 21.11.2024 04:40:14
In Google Assistant in Android 9, there is a possible permissions bypass that allows the Assistant to take a screenshot of apps with FLAG_SECURE. This could lead to local information disclosure with no additional execution privileges needed. User int...
CVE-2019-2108
- EPSS 1.04%
- Veröffentlicht 05.09.2019 22:15:11
- Zuletzt bearbeitet 21.11.2024 04:40:14
In ihevcd_ref_list of ihevcd_ref_list.c in Android 10, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for expl...
CVE-2019-2115
- EPSS 0.27%
- Veröffentlicht 05.09.2019 22:15:11
- Zuletzt bearbeitet 21.11.2024 04:40:15
In GateKeeper::MintAuthToken of gatekeeper.cpp in Android 7.1.1, 7.1.2, 8.0, 8.1 and 9, there is possible memory corruption due to a double free. This could lead to local escalation of privilege with System execution privileges needed. User interacti...
CVE-2019-2123
- EPSS 0.16%
- Veröffentlicht 05.09.2019 22:15:11
- Zuletzt bearbeitet 21.11.2024 04:40:16
In execTransact of Binder.java in Android 7.1.1, 7.1.2, 8.0, 8.1, and 9, there is a possible local execution of arbitrary code in a privileged process due to a memory overwrite. This could lead to local escalation of privilege with no additional exec...
CVE-2019-2124
- EPSS 0.14%
- Veröffentlicht 05.09.2019 22:15:11
- Zuletzt bearbeitet 21.11.2024 04:40:16
In ComposeActivityEmailExternal of ComposeActivityEmailExternal.java in Android 7.1.1, 7.1.2, 8.0, 8.1 and 9, there is a possible way to silently attach files to an email due to a confused deputy. This could lead to local information disclosure.
CVE-2019-2174
- EPSS 0.14%
- Veröffentlicht 05.09.2019 22:15:11
- Zuletzt bearbeitet 21.11.2024 04:40:22
In SensorManager::assertStateLocked of SensorManager.cpp in Android 7.1.1, 7.1.2, 8.0, 8.1, and 9, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges ne...
CVE-2019-2135
- EPSS 0.5%
- Veröffentlicht 20.08.2019 20:15:13
- Zuletzt bearbeitet 21.11.2024 04:40:17
In Mfc_Transceive of phNxpExtns_MifareStd.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploi...
CVE-2019-2136
- EPSS 0.18%
- Veröffentlicht 20.08.2019 20:15:13
- Zuletzt bearbeitet 21.11.2024 04:40:17
In Status::readFromParcel of Status.cpp, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for explo...