|
210631
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In libcodec2_soft_mp3dec, there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User i…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2020-0340
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210632
|
5.0 |
MEDIUM
Local
|
google
|
android
|
In checkKeyIntent of AccountManagerService.java, there is a possible permission bypass. This could lead to local information disclosure with User execution privileges needed. User interaction is need…
|
NVD-CWE-noinfo
|
CVE-2020-0338
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210633
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In MediaProvider, there is a possible bypass of a permissions check due to a confused deputy. This could lead to local information disclosure, with User execution privileges needed. User interaction …
|
NVD-CWE-noinfo
|
CVE-2020-0337
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210634
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In SurfaceFlinger, there is possible memory corruption due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed …
|
CWE-787
CWE-843
Out-of-bounds Write
Type Confusion
|
CVE-2020-0336
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210635
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In UrlQuerySanitizer, there is a possible improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploi…
|
CWE-20
Improper Input Validation
|
CVE-2020-0333
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210636
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In libstagefright, there is a possible dead loop due to an uncaught exception. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed f…
|
NVD-CWE-Other
|
CVE-2020-0332
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210637
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In iorap, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege and code execution with System execution privileges needed. User interaction …
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2020-0330
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210638
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In the OMX encoder, there is a possible out of bounds read due to invalid input validation. This could lead to local information disclosure with no additional execution privileges needed. User intera…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-0329
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210639
|
4.4 |
MEDIUM
Local
|
google
|
android
|
In the camera, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not need…
|
CWE-125
CWE-190
Out-of-bounds Read
Integer Overflow or Wraparound
|
CVE-2020-0328
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
210640
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In libsonivox, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction …
|
CWE-125
Out-of-bounds Read
|
CVE-2020-0324
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
