CVE-2019-2137
- EPSS 0.16%
- Veröffentlicht 20.08.2019 20:15:13
- Zuletzt bearbeitet 21.11.2024 04:40:18
In the endCall() function of TelecomManager.java, there is a possible Denial of Service due to a missing permission check. This could lead to local denial of access to Emergency Services with User execution privileges needed. User interaction is not ...
CVE-2019-2120
- EPSS 0.17%
- Veröffentlicht 20.08.2019 20:15:12
- Zuletzt bearbeitet 21.11.2024 04:40:16
In OatFileAssistant::GenerateOatFile of oat_file_assistant.cc, there is a possible file corruption issue due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interacti...
- EPSS 0.12%
- Veröffentlicht 20.08.2019 20:15:12
- Zuletzt bearbeitet 21.11.2024 04:40:16
In ActivityManagerService.attachApplication of ActivityManagerService, there is a possible race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitatio...
CVE-2019-2122
- EPSS 0.19%
- Veröffentlicht 20.08.2019 20:15:12
- Zuletzt bearbeitet 21.11.2024 04:40:16
In LockTaskController.lockKeyguardIfNeeded of the LockTaskController.java, there was a difference in the handling of the default case between the WindowManager and the Settings. This could lead to a local escalation of privilege with no additional ex...
CVE-2019-2125
- EPSS 0.14%
- Veröffentlicht 20.08.2019 20:15:12
- Zuletzt bearbeitet 21.11.2024 04:40:16
In ChangeDefaultDialerDialog.java, there is a possible escalation of privilege due to an overlay attack. This could lead to local escalation of privilege, granting privileges to a local app without the user's informed consent, with no additional priv...
CVE-2019-2126
- EPSS 5.39%
- Veröffentlicht 20.08.2019 20:15:12
- Zuletzt bearbeitet 21.11.2024 04:40:16
In ParseContentEncodingEntry of mkvparser.cc, there is a possible double free due to a missing reset of a freed pointer. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitat...
CVE-2019-2127
- EPSS 0.17%
- Veröffentlicht 20.08.2019 20:15:12
- Zuletzt bearbeitet 21.11.2024 04:40:16
In AudioInputDescriptor::setClientActive of AudioInputDescriptor.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is no...
CVE-2019-2128
- EPSS 0.19%
- Veröffentlicht 20.08.2019 20:15:12
- Zuletzt bearbeitet 21.11.2024 04:40:17
In ACELP_4t64_fx of c4t64fx.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Pr...
CVE-2019-2129
- EPSS 0.75%
- Veröffentlicht 20.08.2019 20:15:12
- Zuletzt bearbeitet 21.11.2024 04:40:17
In extract3GPPGlobalDescriptions of TextDescriptions.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is neede...
- EPSS 1.65%
- Veröffentlicht 20.08.2019 20:15:12
- Zuletzt bearbeitet 21.11.2024 04:40:17
In CompilationJob::FinalizeJob of compiler.cc, there is a possible remote code execution due to type confusion. This could lead to escalation of privilege from a malicious proxy configuration with no additional execution privileges needed. User inter...