|
226691
|
7.5 |
HIGH
Network
|
google
|
android
|
In nfcManager_routeAid and nfcManager_unrouteAid of NativeNfcManager.cpp, there is possible memory reuse due to a use after free. This could lead to remote information disclosure with no additional e…
|
CWE-416
Use After Free
|
CVE-2019-2230
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
226692
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In updateWidget of BaseWidgetProvider.java, there is a possible leak of user data due to a missing permission check. This could lead to local information disclosure with no additional execution privi…
|
CWE-862
Missing Authorization
|
CVE-2019-2229
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
226693
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In array_find of array.c, there is a possible out-of-bounds read due to an incorrect bounds check. This could lead to local information disclosure in the printer spooler with no additional execution …
|
CWE-125
Out-of-bounds Read
|
CVE-2019-2228
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
226694
|
6.5 |
MEDIUM
Adjacent
|
google
|
android
|
In DeepCopy of btif_av.cc, there is a possible out of bounds read due to improper casting. This could lead to remote information disclosure over Bluetooth with no additional execution privileges need…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-2227
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
226695
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In device_class_to_int of device_class.cc, there is a possible out of bounds read due to improper casting. This could lead to local information disclosure in the Bluetooth server with User execution …
|
CWE-125
Out-of-bounds Read
|
CVE-2019-2226
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
226696
|
8.8 |
HIGH
Adjacent
|
google
|
android
|
When pairing with a Bluetooth device, it may be possible to pair a malicious device without any confirmation from the user, and that device may be able to interact with the phone. This could lead to …
|
CWE-269
Improper Privilege Management
|
CVE-2019-2225
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
226697
|
7.8 |
HIGH
Local
|
google
|
android
|
In ihevcd_ref_list of ihevcd_ref_list.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-2223
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
226698
|
7.8 |
HIGH
Local
|
google
|
android
|
n ihevcd_parse_slice_data of ihevcd_parse_slice.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privile…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-2222
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
226699
|
7.8 |
HIGH
Local
|
google
|
android
|
In hasActivityInVisibleTask of WindowProcessController.java there’s a possible bypass of user interaction requirements due to incorrect handling of top activities in INITIALIZING state. This could le…
|
NVD-CWE-noinfo
|
CVE-2019-2221
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
226700
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In checkOperation of AppOpsService.java, there is a possible bypass of user interaction requirements due to mishandling application suspend. This could lead to local information disclosure no additio…
|
NVD-CWE-noinfo
|
CVE-2019-2220
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
