Lucene search
K

44 matches found

osv
osv
added 2023/10/06 7:15 p.m.5 views

CVE-2023-21266

In multiple functions of ActivityManagerService.java, there is a possible way to escape Google Play protection due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS5.9AI score
Exploits0References2
osv
osv
added 2023/10/06 7:15 p.m.6 views

UBUNTU-CVE-2023-21266

In multiple functions of ActivityManagerService.java, there is a possible way to escape Google Play protection due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS5.9AI score0.00113EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2023/10/06 12:0 a.m.10 views

PT-2023-18047 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: The issue is related to a permissions bypass in the killBackgroundProcesses function of ActivityManagerService.java, which could allow escaping Google Play protection. This might lead to...

7.8CVSS6.8AI score0.00113EPSS
Exploits0References13
cnnvd
cnnvd
added 2023/08/14 12:0 a.m.6 views

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an information disclosure vulnerability that originates from a messy proxy in the openContentUri module of ActivityManagerService.java, which can be exploited by an attacker to obtain sensitive...

5.5CVSS6.1AI score0.0009EPSS
Exploits0References3
osv
osv
added 2023/06/15 7:15 p.m.4 views

CVE-2023-21131

In checkKeyIntentParceledCorrectly of ActivityManagerService.java, there is a possible bypass of Parcel Mismatch mitigations due to a logic error in the code. This could lead to local escalation of privilege and the ability to launch arbitrary activities in settings with no additional execution...

7.8CVSS6AI score0.0009EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2023/06/15 12:0 a.m.7 views

PT-2023-17923 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-11 through Android-13 Description: A logic error in the checkKeyIntentParceledCorrectly function of ActivityManagerService.java can lead to a bypass of Parcel Mismatch mitigations. This issue could result in local...

7.8CVSS6.9AI score0.0009EPSS
Exploits0References4
cnnvd
cnnvd
added 2023/05/15 12:0 a.m.4 views

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability, which is caused by a privilege bypass in registerReceiverWithFeature of ActivityManagerService.java. An attacker can exploit the vulnerability to elevate...

8.4CVSS7.1AI score0.00084EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2023/05/15 12:0 a.m.7 views

PT-2023-17909 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: The issue is related to a permissions bypass in the registerReceiverWithFeature method of ActivityManagerService.java. This could allow isolated processes to register a broadcast receiver, potentially...

8.4CVSS7.2AI score0.00084EPSS
Exploits0References5
osv
osv
added 2023/05/04 9:15 p.m.3 views

CVE-2023-21496

Active Debug Code vulnerability in ActivityManagerService prior to SMR May-2023 Release 1 allows attacker to use debug function via setting debug level...

5.5CVSS6.1AI score0.00176EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2023/05/04 12:0 a.m.6 views

PT-2023-18250 · Unknown · Activitymanagerservice

Name of the Vulnerable Software and Affected Versions: ActivityManagerService versions prior to SMR May-2023 Release 1 Description: The issue allows an attacker to utilize a debug function by setting the debug level, potentially exploiting the Active Debug Code vulnerability in...

6.1CVSS5.5AI score0.00176EPSS
Exploits0References3
cnnvd
cnnvd
added 2023/05/04 12:0 a.m.6 views

SAMSUNG Mobile devices 安全漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability in SAMSUNG Mobile devices SMR May-2023 Release 1 previously existed in ActivityManagerService that allowed an attacker to use...

6.1CVSS5.7AI score0.00176EPSS
Exploits0References2
osv
osv
added 2021/04/09 6:15 p.m.5 views

CVE-2021-25363

An improper access control in ActivityManagerService prior to SMR APR-2021 Release 1 allows untrusted applications to access running processesdelete some local files...

6.1CVSS6.4AI score0.00106EPSS
Exploits0References2
osv
osv
added 2021/02/10 5:15 p.m.3 views

CVE-2021-0327

In getContentProviderImpl of ActivityManagerService.java, there is a possible permission bypass due to non-restored binder identities. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.8CVSS7.2AI score0.00259EPSS
Exploits0References1
osv
osv
added 2021/01/11 10:15 p.m.2 views

CVE-2021-0321

In enforceDumpPermissionForPackage of ActivityManagerService.java, there is a possible way to determine if a package is installed due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not...

5.5CVSS6.4AI score
Exploits0References1
attackerkb
attackerkb
added 2020/10/14 2:15 p.m.1 views

CVE-2020-0412

In setProcessMemoryTrimLevel of ActivityManagerService.java, there is a missing permission check. This could lead to local information disclosure of foreground processes with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

3.3CVSS5.9AI score0.0016EPSS
Exploits0References2
osv
osv
added 2020/03/10 9:15 p.m.3 views

CVE-2020-0087

In getProcessPss of ActivityManagerService.java, there is a possible side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID:...

5.5CVSS6.7AI score0.00145EPSS
Exploits0References1
prion
prion
added 2019/09/27 7:15 p.m.12 views

Design/Logic Flaw

In the Activity Manager service, there is a possible permission bypass due to incorrect permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android I...

4.6CVSS8.1AI score0.00145EPSS
Exploits0References1Affected Software1
cve
cve
added 2019/09/27 6:5 p.m.39 views

CVE-2019-9378

CVE-2019-9378 affects Android 10 in the Framework/Activity Manager area, where a permission check weakness allows local elevation of privileges without user interaction. The issue enables a bypass of access controls to gain higher privileges on the device, with Local attack vector and no authenti...

7.8CVSS8.1AI score0.00145EPSS
Exploits0References1Affected Software1
osv
osv
added 2019/08/20 8:15 p.m.4 views

CVE-2019-2121

In ActivityManagerService.attachApplication of ActivityManagerService, there is a possible race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-9. Andro...

7CVSS5.9AI score0.00123EPSS
Exploits0References1
bdu_fstec
bdu_fstec
added 2018/10/05 12:0 a.m.6 views

The vulnerability of the `checkGrantUriPermissionLocked` function in the Android operating system’s Framework component, which allows a hacker to escalate their privileges

The vulnerability of the checkGrantUriPermissionLocked function in the ActivityManagerService.java file of the Android operating system’s framework is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to increase their privileges through a...

7.5CVSS5.5AI score0.00188EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder