|
213521
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In PackageManager, there is a missing permission check. This could lead to local information disclosure across users with no additional execution privileges needed. User interaction is not needed for…
|
CWE-862
Missing Authorization
|
CVE-2020-0290
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213522
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In PackageManager, there is a missing permission check. This could lead to local information disclosure across users with no additional execution privileges needed. User interaction is not needed for…
|
CWE-862
Missing Authorization
|
CVE-2020-0289
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213523
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In PackageManager, there is a missing permission check. This could lead to local information disclosure across user boundaries with no additional execution privileges needed. User interaction is not …
|
CWE-862
Missing Authorization
|
CVE-2020-0288
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213524
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In libmkvextractor, there is a possible resource exhaustion due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction…
|
CWE-20
Improper Input Validation
|
CVE-2020-0287
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213525
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In the AAC parser, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interact…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-0279
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213526
|
7.8 |
HIGH
Local
|
google
|
android
|
In NetworkPolicyManagerService, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege allowing a malicious app to modify the devic…
|
CWE-862
Missing Authorization
|
CVE-2020-0277
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213527
|
7.8 |
HIGH
Local
|
google
|
android
|
In MediaProvider, there is a possible way to access ContentResolver and MediaStore entries the app shouldn't have access to due to a permissions bypass. This could lead to local escalation of privile…
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-0275
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213528
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In the OMX parser, there is a possible information disclosure due to a returned raw pointer. This could lead to local information disclosure with no additional execution privileges needed. User inter…
|
NVD-CWE-Other
|
CVE-2020-0274
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213529
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In tremolo, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is …
|
CWE-125
Out-of-bounds Read
|
CVE-2020-0270
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213530
|
7.8 |
HIGH
Local
|
google
|
android
|
In WindowManager, there is a possible launch of an unexpected app due to a confused deputy. This could lead to local escalation of privilege due to launching a malicious app instead of the one the us…
|
CWE-610
Externally Controlled Reference to a Resource in Another Sphere
|
CVE-2020-0267
|
2024-11-21 13:53 |
2020-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
