|
214941
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In extend_frame_highbd of restoration.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privilege…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0470
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214942
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In addEscrowToken of LockSettingsService.java, there is a possible loss of the synthetic password due to logic error. This could lead to local denial of service with no additional execution privilege…
|
NVD-CWE-noinfo
|
CVE-2020-0469
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214943
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In listen() and related functions of TelephonyRegistry.java, there is a possible permissions bypass of location permissions due to a missing permission check. This could lead to local information dis…
|
CWE-862
Missing Authorization
|
CVE-2020-0468
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214944
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In onUserStopped of Vpn.java, there is a possible resetting of user preferences due to a logic issue. This could lead to local information disclosure of secure network traffic over a non-VPN link wit…
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2020-0467
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214945
|
7.8 |
HIGH
Local
|
google
|
android
|
In do_epoll_ctl and ep_loop_check_proc of eventpoll.c, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with no additional execution privilege…
|
CWE-416
Use After Free
|
CVE-2020-0466
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214946
|
6.8 |
MEDIUM
Physics
|
google
|
android
|
In various methods of hid-multitouch.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0465
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214947
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In resolv_cache_lookup of res_cache.cpp, there is a possible side channel information disclosure. This could lead to local information disclosure of accessed web resources with no additional executio…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2020-0464
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214948
|
7.5 |
HIGH
Network
|
google
|
android
|
In sdp_server_handle_client_req of sdp_server.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure from the bluetooth server with…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-0463
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214949
|
7.5 |
HIGH
Network
|
google
|
android
|
In createNameCredentialDialog of CertInstaller.java, there exists the possibility of improperly installed certificates due to a logic error. This could lead to remote information disclosure with no a…
|
CWE-287
Improper Authentication
|
CVE-2020-0460
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
214950
|
3.3 |
LOW
Local
|
google
|
android
|
In sendConfiguredNetworkChangedBroadcast of WifiConfigManager.java, there is a possible leak of sensitive WiFi configuration data due to a missing permission check. This could lead to local informati…
|
CWE-862
Missing Authorization
|
CVE-2020-0459
|
2024-11-21 13:53 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
