|
214811
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In getDocumentMetadata of DocumentsContract.java, there is a possible disclosure of location metadata from a file due to a permissions bypass. This could lead to local information disclosure from a f…
|
CWE-862
Missing Authorization
|
CVE-2020-0239
|
2024-11-21 13:53 |
2020-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214812
|
7.0 |
HIGH
Local
|
google
|
android
|
In updatePreferenceIntents of AccountTypePreferenceLoader, there is a possible confused deputy attack due to a race condition. This could lead to local escalation of privilege and launching privilege…
|
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2020-0238
|
2024-11-21 13:53 |
2020-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214813
|
9.8 |
CRITICAL
Network
|
google
|
android
|
There is a possible out of bounds write due to an incorrect bounds check. Product: AndroidVersions: Android SoCAndroid ID: A-156333727
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0231
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214814
|
9.8 |
CRITICAL
Network
|
google
|
android
|
There is a possible out of bounds write due to an incorrect bounds check. Product: AndroidVersions: Android SoCAndroid ID: A-156337262
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0230
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214815
|
7.5 |
HIGH
Network
|
google
|
android
|
There is an improper configuration of recorder related service. Product: AndroidVersions: Android SoCAndroid ID: A-156333723
|
NVD-CWE-noinfo
|
CVE-2020-0228
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214816
|
7.8 |
HIGH
Local
|
google
|
android
|
In onCommand of CompanionDeviceManagerService.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege allowing background data…
|
CWE-862
Missing Authorization
|
CVE-2020-0227
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214817
|
7.8 |
HIGH
Local
|
google
|
android
|
In createWithSurfaceParent of Client.cpp, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege in the graphics server with no additional exe…
|
CWE-787
CWE-843
Out-of-bounds Write
Type Confusion
|
CVE-2020-0226
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214818
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In a2dp_vendor_ldac_decoder_decode_packet of a2dp_vendor_ldac_decoder.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no addit…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0225
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214819
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In FastKeyAccumulator::GetKeysSlow of keys.cc, there is a possible out of bounds write due to type confusion. This could lead to remote code execution when processing a proxy configuration with no ad…
|
CWE-787
CWE-843
Out-of-bounds Write
Type Confusion
|
CVE-2020-0224
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214820
|
6.4 |
MEDIUM
Local
|
google
opensuse
|
android
leap
|
In cdev_get of char_dev.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is no…
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2020-0305
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
