|
211301
|
7.5 |
HIGH
Network
|
google
|
android
|
In Message and toBundle of Notification.java, there is a possible resource exhaustion due to improper input validation. This could lead to remote denial of service requiring a device reset to fix wit…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2020-0441
|
2024-11-21 13:53 |
2020-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211302
|
7.8 |
HIGH
Local
|
google
|
android
|
In generatePackageInfo of PackageManagerService.java, there is a possible permissions bypass due to an incorrect permission check. This could lead to local escalation of privilege that allows instant…
|
CWE-862
Missing Authorization
|
CVE-2020-0439
|
2024-11-21 13:53 |
2020-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211303
|
7.8 |
HIGH
Local
|
google
|
android
|
In the AIBinder_Class constructor of ibinder.cpp, there is a possible arbitrary code execution due to uninitialized data. This could lead to local escalation of privilege if a process were using libb…
|
CWE-824
CWE-909
Access of Uninitialized Pointer
Missing Initialization of Resource
|
CVE-2020-0438
|
2024-11-21 13:53 |
2020-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211304
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In CellBroadcastReceiver's intent handlers, there is a possible denial of service due to a missing permission check. This could lead to local denial of service of emergency alerts with no additional …
|
CWE-862
Missing Authorization
|
CVE-2020-0437
|
2024-11-21 13:53 |
2020-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211305
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In send_vc of res_send.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. Us…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-0424
|
2024-11-21 13:53 |
2020-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211306
|
7.8 |
HIGH
Local
|
google
|
android
|
In getPermissionInfosForGroup of Utils.java, there is a logic error. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploit…
|
NVD-CWE-noinfo
|
CVE-2020-0418
|
2024-11-21 13:53 |
2020-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211307
|
7.8 |
HIGH
Local
|
google
|
android
|
In create of FileMap.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User int…
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2020-0409
|
2024-11-21 13:53 |
2020-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211308
|
7.8 |
HIGH
Local
|
google
debian
|
android
debian_linux
|
In binder_release_work of binder.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges …
|
CWE-416
CWE-667
Use After Free
Improper Locking
|
CVE-2020-0423
|
2024-11-21 13:53 |
2020-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211309
|
3.3 |
LOW
Local
|
google
|
android
|
In constructImportFailureNotification of NotificationImportExportListener.java, there is a possible permissions bypass due to an unsafe PendingIntent. This could lead to local information disclosure …
|
NVD-CWE-noinfo
|
CVE-2020-0422
|
2024-11-21 13:53 |
2020-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211310
|
7.8 |
HIGH
Local
|
google
|
android
|
In appendFormatV of String8.cpp, there is a possible out of bounds write due to incorrect error handling. This could lead to local escalation of privilege with no additional execution privileges need…
|
CWE-787
CWE-755
Out-of-bounds Write
Improper Handling of Exceptional Conditions
|
CVE-2020-0421
|
2024-11-21 13:53 |
2020-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
