|
211161
|
7.8 |
HIGH
Local
|
google
|
android
|
In reset of NuPlayerDriver.cpp, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the media server with no additional execution privilege…
|
CWE-416
CWE-667
Use After Free
Improper Locking
|
CVE-2020-0242
|
2024-11-21 13:53 |
2020-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211162
|
7.8 |
HIGH
Local
|
google
|
android
|
In NuPlayerStreamListener of NuPlayerStreamListener.cpp, there is possible memory corruption due to a double free. This could lead to local escalation of privilege with no additional execution privil…
|
CWE-787
CWE-415
Out-of-bounds Write
Double Free
|
CVE-2020-0241
|
2024-11-21 13:53 |
2020-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211163
|
8.8 |
HIGH
Network
|
google
|
android
|
In NewFixedDoubleArray of factory.cc, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User…
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2020-0240
|
2024-11-21 13:53 |
2020-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211164
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In getDocumentMetadata of DocumentsContract.java, there is a possible disclosure of location metadata from a file due to a permissions bypass. This could lead to local information disclosure from a f…
|
CWE-862
Missing Authorization
|
CVE-2020-0239
|
2024-11-21 13:53 |
2020-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211165
|
7.0 |
HIGH
Local
|
google
|
android
|
In updatePreferenceIntents of AccountTypePreferenceLoader, there is a possible confused deputy attack due to a race condition. This could lead to local escalation of privilege and launching privilege…
|
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2020-0238
|
2024-11-21 13:53 |
2020-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211166
|
9.8 |
CRITICAL
Network
|
google
|
android
|
There is a possible out of bounds write due to an incorrect bounds check. Product: AndroidVersions: Android SoCAndroid ID: A-156333727
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0231
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211167
|
9.8 |
CRITICAL
Network
|
google
|
android
|
There is a possible out of bounds write due to an incorrect bounds check. Product: AndroidVersions: Android SoCAndroid ID: A-156337262
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0230
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211168
|
7.5 |
HIGH
Network
|
google
|
android
|
There is an improper configuration of recorder related service. Product: AndroidVersions: Android SoCAndroid ID: A-156333723
|
NVD-CWE-noinfo
|
CVE-2020-0228
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211169
|
7.8 |
HIGH
Local
|
google
|
android
|
In onCommand of CompanionDeviceManagerService.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege allowing background data…
|
CWE-862
Missing Authorization
|
CVE-2020-0227
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211170
|
7.8 |
HIGH
Local
|
google
|
android
|
In createWithSurfaceParent of Client.cpp, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege in the graphics server with no additional exe…
|
CWE-787
CWE-843
Out-of-bounds Write
Type Confusion
|
CVE-2020-0226
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
