CVE-2020-0267

2020-09-1720:44:45

google_android

www.cve.org

windowmanager

local privilege escalation

android-11

user interaction

AI Score

8.4

Confidence

High

EPSS

0.001

Percentile

17.1%

JSON

In WindowManager, there is a possible launch of an unexpected app due to a confused deputy. This could lead to local escalation of privilege due to launching a malicious app instead of the one the user intended, with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-139128211

CNA Affected

[
  {
    "product": "Android",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Android-11"
      }
    ]
  }
]

References

source.android.com/security/bulletin/android-11