|
215401
|
7.8 |
HIGH
Local
|
google
|
android
|
In WindowManager, there is a possible launch of an unexpected app due to a confused deputy. This could lead to local escalation of privilege due to launching a malicious app instead of the one the us…
|
CWE-610
Externally Controlled Reference to a Resource in Another Sphere
|
CVE-2020-0267
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215402
|
7.8 |
HIGH
Local
|
google
|
android
|
In factory reset protection, there is a possible FRP bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User in…
|
CWE-862
Missing Authorization
|
CVE-2020-0266
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215403
|
8.8 |
HIGH
Network
|
google
|
android
|
In libstagefright, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is nee…
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2020-0264
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215404
|
7.8 |
HIGH
Local
|
google
|
android
|
In Pixel's use of the Catpipe library, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. Us…
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2020-0434
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215405
|
7.8 |
HIGH
Local
|
google
|
android
|
In blk_mq_queue_tag_busy_iter of blk-mq-tag.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges nee…
|
CWE-416
CWE-667
Use After Free
Improper Locking
|
CVE-2020-0433
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215406
|
7.8 |
HIGH
Local
|
google
opensuse
|
android
leap
|
In skb_to_mamac of networking.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. U…
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2020-0432
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215407
|
6.7 |
MEDIUM
Local
|
google
opensuse
|
android
leap
|
In kbd_keycode of keyboard.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. U…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0431
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215408
|
7.8 |
HIGH
Local
|
google
|
android
|
In skb_headlen of /include/linux/skbuff.h, there is a possible out of bounds read due to memory corruption. This could lead to local escalation of privilege with no additional execution privileges ne…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-0430
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215409
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In l2tp_session_delete and related functions of l2tp_core.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privil…
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2020-0429
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215410
|
6.4 |
MEDIUM
Local
|
google
|
android
|
In CamX code, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges required. User interaction is not needed fo…
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2020-0428
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
