|
220751
|
7.8 |
HIGH
Local
|
google
|
android
|
In onCommand of CompanionDeviceManagerService.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege allowing background data…
|
CWE-862
Missing Authorization
|
CVE-2020-0227
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220752
|
7.8 |
HIGH
Local
|
google
|
android
|
In createWithSurfaceParent of Client.cpp, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege in the graphics server with no additional exe…
|
CWE-787
CWE-843
Out-of-bounds Write
Type Confusion
|
CVE-2020-0226
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220753
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In a2dp_vendor_ldac_decoder_decode_packet of a2dp_vendor_ldac_decoder.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no addit…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0225
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220754
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In FastKeyAccumulator::GetKeysSlow of keys.cc, there is a possible out of bounds write due to type confusion. This could lead to remote code execution when processing a proxy configuration with no ad…
|
CWE-787
CWE-843
Out-of-bounds Write
Type Confusion
|
CVE-2020-0224
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220755
|
6.4 |
MEDIUM
Local
|
google
opensuse
|
android
leap
|
In cdev_get of char_dev.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is no…
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2020-0305
|
2024-11-21 13:53 |
2020-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220756
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In crus_sp_shared_ioctl we first copy 4 bytes from userdata into "size" variable, and then use that variable as the size parameter for "copy_from_user", ending up overwriting memory following "crus_s…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0235
|
2024-11-21 13:53 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220757
|
7.8 |
HIGH
Local
|
google
|
android
|
In crus_afe_get_param of msm-cirrus-playback.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution pr…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0234
|
2024-11-21 13:53 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220758
|
9.8 |
CRITICAL
Network
|
google
|
android
|
Function abc_pcie_issue_dma_xfer_sync creates a transfer object, adds it to the session object then continues to work with it. A concurrent thread could retrieve created transfer object from the sess…
|
CWE-416
Use After Free
|
CVE-2020-0232
|
2024-11-21 13:53 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220759
|
9.8 |
CRITICAL
Network
|
google
|
android
|
This is an unbounded write into kernel global memory, via a user-controlled buffer size.Product: AndroidVersions: Android kernelAndroid ID: A-135130450
|
CWE-787
Out-of-bounds Write
|
CVE-2020-0223
|
2024-11-21 13:53 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220760
|
7.5 |
HIGH
Network
|
intel
|
software_manager
active_management_technology_firmware
|
Out-of-bounds read in IPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions before 14.0.33 may allow an unauthenticated user to potentially enable denial of service via network access.
|
CWE-125
Out-of-bounds Read
|
CVE-2020-0597
|
2024-11-21 13:53 |
2020-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
