|
221751
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In hevcd_fmt_conv_420sp_to_420sp_av8 of ihevcd_fmt_conv_420sp_to_420sp.s, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with …
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0213
|
2024-11-21 13:53 |
2020-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221752
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In _onBufferDestroyed of InputBufferManager.cpp, there is a possible out of bounds read due to a use after free. This could lead to remote information disclosure with no additional execution privileg…
|
CWE-125
CWE-416
Out-of-bounds Read
Use After Free
|
CVE-2020-0212
|
2024-11-21 13:53 |
2020-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221753
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In SumCompoundHorizontalTaps of convolve_neon.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution p…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-0211
|
2024-11-21 13:53 |
2020-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221754
|
7.8 |
HIGH
Local
|
google
|
android
|
In removeSharedAccountAsUser of AccountManager.java, there is a possible permissions bypass to a confused deputy. This could lead to local escalation of privilege with User execution privileges neede…
|
CWE-610
Externally Controlled Reference to a Resource in Another Sphere
|
CVE-2020-0210
|
2024-11-21 13:53 |
2020-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221755
|
7.8 |
HIGH
Local
|
google
|
android
|
In multiple functions of AccountManager.java, there is a possible permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction…
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-0209
|
2024-11-21 13:53 |
2020-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221756
|
7.8 |
HIGH
Local
|
google
|
android
|
In multiple functions of AccountManager.java, there is a possible permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction…
|
CWE-276
Incorrect Default Permissions
|
CVE-2020-0208
|
2024-11-21 13:53 |
2020-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221757
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In next_marker of jdmarker.c, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed.…
|
CWE-20
CWE-125
Improper Input Validation
Out-of-bounds Read
|
CVE-2020-0207
|
2024-11-21 13:53 |
2020-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221758
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In the settings app, there is a possible app crash due to improper input validation. This could lead to local denial of service of the Settings app with User execution privileges needed. User interac…
|
CWE-20
Improper Input Validation
|
CVE-2020-0206
|
2024-11-21 13:53 |
2020-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221759
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In the DaalaBitReader constructor of entropy_decoder.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure in the media server wit…
|
CWE-125
Out-of-bounds Read
|
CVE-2020-0205
|
2024-11-21 13:53 |
2020-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221760
|
7.0 |
HIGH
Local
|
google
|
android
|
In InstallPackage of package.cpp, there is a possible bypass of a signature check due to a Time of Check/Time of Use condition. This could lead to local escalation of privilege by allowing a bypass o…
|
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2020-0204
|
2024-11-21 13:53 |
2020-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
