|
211611
|
4.6 |
MEDIUM
Physics
|
google
|
android
|
In updateIncomingFileConfirmNotification of BluetoothOppNotification.java, there is a possible permissions bypass. This could lead to local escalation of privilege allowing an attacker with physical …
|
CWE-863
Incorrect Authorization
|
CVE-2020-0473
|
2024-11-21 13:53 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211612
|
3.3 |
LOW
Local
|
google
|
android
|
In queryInternal of CallLogProvider.java, there is a possible permission bypass due to improper input validation. This could lead to local information disclosure of voicemail metadata with User execu…
|
CWE-20
Improper Input Validation
|
CVE-2020-0368
|
2024-11-21 13:53 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211613
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In nci_proc_ee_management_rsp of nci_hrcv.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privil…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-0280
|
2024-11-21 13:53 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211614
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In writeBurstBufferBytes of SPDIFEncoder.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no clear exfiltration path,…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-0244
|
2024-11-21 13:53 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211615
|
9.8 |
CRITICAL
Network
|
google
|
android
|
There is a possible out of bounds write due to a missing bounds check.Product: AndroidVersions: Android SoCAndroid ID: A-170378843
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0456
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211616
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In extend_frame_highbd of restoration.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privilege…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0470
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211617
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In addEscrowToken of LockSettingsService.java, there is a possible loss of the synthetic password due to logic error. This could lead to local denial of service with no additional execution privilege…
|
NVD-CWE-noinfo
|
CVE-2020-0469
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211618
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In listen() and related functions of TelephonyRegistry.java, there is a possible permissions bypass of location permissions due to a missing permission check. This could lead to local information dis…
|
CWE-862
Missing Authorization
|
CVE-2020-0468
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211619
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In onUserStopped of Vpn.java, there is a possible resetting of user preferences due to a logic issue. This could lead to local information disclosure of secure network traffic over a non-VPN link wit…
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2020-0467
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211620
|
7.8 |
HIGH
Local
|
google
|
android
|
In do_epoll_ctl and ep_loop_check_proc of eventpoll.c, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with no additional execution privilege…
|
CWE-416
Use After Free
|
CVE-2020-0466
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
