|
214561
|
7.0 |
HIGH
Local
|
google
|
android
|
In HalCamera::requestNewFrame of HalCamera.cpp, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges ne…
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2020-0474
|
2024-11-21 13:53 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214562
|
4.6 |
MEDIUM
Physics
|
google
|
android
|
In updateIncomingFileConfirmNotification of BluetoothOppNotification.java, there is a possible permissions bypass. This could lead to local escalation of privilege allowing an attacker with physical …
|
CWE-863
Incorrect Authorization
|
CVE-2020-0473
|
2024-11-21 13:53 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214563
|
3.3 |
LOW
Local
|
google
|
android
|
In queryInternal of CallLogProvider.java, there is a possible permission bypass due to improper input validation. This could lead to local information disclosure of voicemail metadata with User execu…
|
CWE-20
Improper Input Validation
|
CVE-2020-0368
|
2024-11-21 13:53 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214564
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In nci_proc_ee_management_rsp of nci_hrcv.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privil…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-0280
|
2024-11-21 13:53 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214565
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In writeBurstBufferBytes of SPDIFEncoder.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no clear exfiltration path,…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-0244
|
2024-11-21 13:53 |
2020-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214566
|
9.8 |
CRITICAL
Network
|
google
|
android
|
There is a possible out of bounds write due to a missing bounds check.Product: AndroidVersions: Android SoCAndroid ID: A-170378843
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0456
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214567
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In extend_frame_highbd of restoration.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privilege…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0470
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214568
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In addEscrowToken of LockSettingsService.java, there is a possible loss of the synthetic password due to logic error. This could lead to local denial of service with no additional execution privilege…
|
NVD-CWE-noinfo
|
CVE-2020-0469
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214569
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In listen() and related functions of TelephonyRegistry.java, there is a possible permissions bypass of location permissions due to a missing permission check. This could lead to local information dis…
|
CWE-862
Missing Authorization
|
CVE-2020-0468
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214570
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In onUserStopped of Vpn.java, there is a possible resetting of user preferences due to a logic issue. This could lead to local information disclosure of secure network traffic over a non-VPN link wit…
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2020-0467
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
