850 matches found
CVE-2022-20208
In parseRecursively of cppborparse.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID...
CVE-2022-20207
In static definitions of GattServiceConfig.java, there is a possible permission bypass due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
CVE-2022-20205
In isFileUri of FileUtil.java, there is a possible way to bypass the check for a file:// scheme due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersion...
CVE-2022-20202
CVE-2022-20202 affects Android 12L via the function ih264_resi_trans_quant_4x4_sse42 (ih264_resi_trans_quant_sse42.c). It describes a heap buffer overflow that enables a possible out-of-bounds read, leading to remote information disclosure with no default execution privileges; exploitation requir...
CVE-2022-20202
In ih264resitransquant4x4sse42 of ih264resitransquantsse42.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions...
CVE-2022-20200
CVE-2022-20200 affects Android 12L’s SoftApManager.updateApState, where a missing permission check can leak hotspot state. This enables local information disclosure with no extra privileges and no user interaction. The vulnerability is documented across multiple sources (NVD/Red Hat/PRION/Pixel b...
CVE-2022-20200
In updateApState of SoftApManager.java, there is a possible leak of hotspot state due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
CVE-2022-20196
The CVE-2022-20196 issue affects Android 12L’s gallery3d and Photos. It describes a permission bypass due to a confused deputy, enabling local information disclosure without extra execution privileges. Exploitation is reported to require user interaction. The Pixel update bulletin lists CVE-2022-...
CVE-2022-20196
In gallery3d and photos, there is a possible permission bypass due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-201535148...
CVE-2022-20194
CVE-2022-20194 affects Android 12L. The vulnerability arises in the onCreate of ChooseLockGeneric.java, enabling a local elevation of privilege through a permission bypass that does not require user interaction. The impact is limited to elevation of privileges on the device. Remediation per the P...
CVE-2022-20193
In getUniqueUsagesWithLabels of PermissionUsageHelper.java, there is a possible incorrect permission attribution due to a logic error in the code. This could lead to local escalation of privilege by conflating apps with User execution privileges needed. User interaction is needed for...
CVE-2022-20193
Summary: CVE-2022-20193 affects Android 12L, in getUniqueUsagesWithLabels of PermissionUsageHelper.java, where a logic error could cause incorrect permission attribution. This may allow local escalation of privilege by conflating apps with User execution privileges. Impact : requires user interac...
CVE-2022-20192
CVE-2022-20192 affects Android 12L and relates to grantEmbeddedWindowFocus in WindowManagerService, enabling a permissions bypass that could let an attacker change an input channel in the embedded hierarchy and escalate privileges locally without user interaction. The available documents describe...
CVE-2022-20137
In onCreateContextMenu of NetworkProviderSettings.java, there is a possible way for non-owner users to change WiFi settings due to a missing permission check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Produc...
CVE-2022-20125
In GBoard, there is a possible way to bypass factory reset protections due to a sandbox escape. This could lead to local escalation of privilege if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is not needed for exploitation.Produc...
CVE-2022-20134
In readArguments of CallSubjectDialog.java, there is a possible way to trick the user to call the wrong phone number due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...
CVE-2022-20123
In phNciNfcRecvMfResp of phNxpExtnsMifareStd.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
CVE-2022-20135
In writeToParcel of GateKeeperResponse.java, there is a possible parcel format mismatch. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12...
Design/Logic Flaw
In deletePackageX of DeletePackageHelper.java, there is a possible way for a Guest user to reset pre-loaded applications for other users due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...
Authorization
In GBoard, there is a possible way to bypass factory reset protections due to a sandbox escape. This could lead to local escalation of privilege if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is not needed for exploitation.Produc...