|
211861
|
7.0 |
HIGH
Local
|
google
|
android
|
In updatePreferenceIntents of AccountTypePreferenceLoader, there is a possible confused deputy attack due to a race condition. This could lead to local escalation of privilege and launching privilege…
|
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2020-0238
|
2024-11-21 13:53 |
2020-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211862
|
9.8 |
CRITICAL
Network
|
google
|
android
|
There is a possible out of bounds write due to an incorrect bounds check. Product: AndroidVersions: Android SoCAndroid ID: A-156333727
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0231
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211863
|
9.8 |
CRITICAL
Network
|
google
|
android
|
There is a possible out of bounds write due to an incorrect bounds check. Product: AndroidVersions: Android SoCAndroid ID: A-156337262
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0230
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211864
|
7.5 |
HIGH
Network
|
google
|
android
|
There is an improper configuration of recorder related service. Product: AndroidVersions: Android SoCAndroid ID: A-156333723
|
NVD-CWE-noinfo
|
CVE-2020-0228
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211865
|
7.8 |
HIGH
Local
|
google
|
android
|
In onCommand of CompanionDeviceManagerService.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege allowing background data…
|
CWE-862
Missing Authorization
|
CVE-2020-0227
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211866
|
7.8 |
HIGH
Local
|
google
|
android
|
In createWithSurfaceParent of Client.cpp, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege in the graphics server with no additional exe…
|
CWE-787
CWE-843
Out-of-bounds Write
Type Confusion
|
CVE-2020-0226
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211867
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In a2dp_vendor_ldac_decoder_decode_packet of a2dp_vendor_ldac_decoder.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no addit…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0225
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211868
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In FastKeyAccumulator::GetKeysSlow of keys.cc, there is a possible out of bounds write due to type confusion. This could lead to remote code execution when processing a proxy configuration with no ad…
|
CWE-787
CWE-843
Out-of-bounds Write
Type Confusion
|
CVE-2020-0224
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211869
|
6.4 |
MEDIUM
Local
|
google
opensuse
|
android
leap
|
In cdev_get of char_dev.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is no…
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2020-0305
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211870
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In crus_sp_shared_ioctl we first copy 4 bytes from userdata into "size" variable, and then use that variable as the size parameter for "copy_from_user", ending up overwriting memory following "crus_s…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0235
|
2024-11-21 13:53 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
