|
214271
|
9.8 |
CRITICAL
Network
|
google
|
android
|
There is a possible out of bounds write due to an incorrect bounds check. Product: AndroidVersions: Android SoCAndroid ID: A-156337262
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0230
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214272
|
7.5 |
HIGH
Network
|
google
|
android
|
There is an improper configuration of recorder related service. Product: AndroidVersions: Android SoCAndroid ID: A-156333723
|
NVD-CWE-noinfo
|
CVE-2020-0228
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214273
|
7.8 |
HIGH
Local
|
google
|
android
|
In onCommand of CompanionDeviceManagerService.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege allowing background data…
|
CWE-862
Missing Authorization
|
CVE-2020-0227
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214274
|
7.8 |
HIGH
Local
|
google
|
android
|
In createWithSurfaceParent of Client.cpp, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege in the graphics server with no additional exe…
|
CWE-787
CWE-843
Out-of-bounds Write
Type Confusion
|
CVE-2020-0226
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214275
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In a2dp_vendor_ldac_decoder_decode_packet of a2dp_vendor_ldac_decoder.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no addit…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0225
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214276
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In FastKeyAccumulator::GetKeysSlow of keys.cc, there is a possible out of bounds write due to type confusion. This could lead to remote code execution when processing a proxy configuration with no ad…
|
CWE-787
CWE-843
Out-of-bounds Write
Type Confusion
|
CVE-2020-0224
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214277
|
6.4 |
MEDIUM
Local
|
google
opensuse
|
android
leap
|
In cdev_get of char_dev.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is no…
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2020-0305
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214278
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In crus_sp_shared_ioctl we first copy 4 bytes from userdata into "size" variable, and then use that variable as the size parameter for "copy_from_user", ending up overwriting memory following "crus_s…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0235
|
2024-11-21 13:53 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214279
|
7.8 |
HIGH
Local
|
google
|
android
|
In crus_afe_get_param of msm-cirrus-playback.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution pr…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0234
|
2024-11-21 13:53 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214280
|
9.8 |
CRITICAL
Network
|
google
|
android
|
Function abc_pcie_issue_dma_xfer_sync creates a transfer object, adds it to the session object then continues to work with it. A concurrent thread could retrieve created transfer object from the sess…
|
CWE-416
Use After Free
|
CVE-2020-0232
|
2024-11-21 13:53 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
