Lucene search
K

748 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 8:40 p.m.5 views

CVE-2021-0641

In getAvailableSubscriptionInfoList of SubscriptionController.java, there is a possible disclosure of unique identifiers due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS5.3AI score0.00108EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:30 p.m.4 views

CVE-2021-0558

In fillMainDataBuf of pvmp3framedecoder.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11Andro...

6.5CVSS6.4AI score0.00716EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:30 p.m.4 views

CVE-2021-0348

In vpu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-9, Android-10, Android-11; Patch ID:...

7.2CVSS6.6AI score0.00166EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:59 p.m.11 views

CVE-2021-0352

In RT regmap driver, there is a possible memory corruption due to type confusion. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-10, Android-11; Patch ID: ALPS05453809...

4.4CVSS6.8AI score0.00143EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:17 p.m.5 views

CVE-2020-0391

In applyPolicy of PackageManagerService.java, there is possible arbitrary command execution as System due to an unenforced protected-broadcast. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.8CVSS7.7AI score0.00425EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:17 p.m.5 views

CVE-2020-0355

In libFraunhoferAAC, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-141883493...

6.5CVSS6.1AI score0.00842EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:17 p.m.4 views

CVE-2020-0271

In the Settings app, there is an insecure default value. This could lead to local escalation of privilege and tapjacking with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-144507081...

7.3CVSS7.5AI score0.00161EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:17 p.m.4 views

CVE-2020-0262

In WiFi tethering, there is a possible attacker controlled intent due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-156353008...

7.8CVSS7.6AI score0.00151EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:17 p.m.3 views

CVE-2020-0288

In PackageManager, there is a missing permission check. This could lead to local information disclosure across user boundaries with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-153995991...

5.5CVSS4.8AI score0.00135EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:17 p.m.4 views

CVE-2020-0312

In Battery Saver, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-153879099...

5.5CVSS4.8AI score0.00141EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:17 p.m.3 views

CVE-2020-0277

In NetworkPolicyManagerService, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege allowing a malicious app to modify the device's data plan with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS7.5AI score0.00139EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:16 p.m.3 views

CVE-2020-0358

In SurfaceFlinger, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-150227563...

6.4CVSS6.5AI score0.00109EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:16 p.m.2 views

CVE-2020-0497

In canUseBiometric of BiometricServiceBase, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-158481661...

5.5CVSS4.8AI score0.00126EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:16 p.m.7 views

CVE-2020-0381

In Parsewave of easmdls.c, there is a possible out of bounds write due to an integer overflow. This could lead to remote information disclosure in a highly constrained process with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

7.5CVSS7.2AI score0.01494EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:16 p.m.2 views

CVE-2020-0372

In ActivityManager, there is a possible access to protected data due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID:...

5.5CVSS4.8AI score0.00132EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:46 p.m.7 views

CVE-2020-0349

In NFC, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-139188779...

4.4CVSS6.1AI score0.00151EPSS
Exploits0References1
OSV
OSV
added 2024/01/04 1:15 a.m.2 views

CVE-2024-20805

Path traversal vulnerability in ZipCompressor of MyFiles prior to SMR Jan-2024 Release 1 in Android 11 and Android 12, and version 14.5.00.21 in Android 13 allows local attackers to write arbitrary file...

5.5CVSS5.9AI score0.00181EPSS
Exploits0References1
OSV
OSV
added 2024/01/04 1:15 a.m.5 views

CVE-2024-20804

Path traversal vulnerability in FileUriConverter of MyFiles prior to SMR Jan-2024 Release 1 in Android 11 and Android 12, and version 14.5.00.21 in Android 13 allows local attackers to write arbitrary file...

5.5CVSS5.9AI score0.00182EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/01/04 12:0 a.m.4 views

PT-2024-18711 · Google +1 · Android 11 +3

Name of the Vulnerable Software and Affected Versions: MyFiles versions prior to SMR Jan-2024 Release 1 in Android 11 and Android 12 MyFiles version 14.5.00.21 in Android 13 Description: A path traversal vulnerability in the ZipCompressor of MyFiles allows local attackers to write arbitrary files...

5.5CVSS7.1AI score0.00181EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/01/04 12:0 a.m.5 views

PT-2024-18710 · Google +1 · Android 11 +3

Name of the Vulnerable Software and Affected Versions: MyFiles versions prior to SMR Jan-2024 Release 1 in Android 11 and Android 12 MyFiles version 14.5.00.21 in Android 13 Description: The issue allows local attackers to write arbitrary files due to a path traversal vulnerability in the...

5.5CVSS7AI score0.00182EPSS
Exploits0References5
Rows per page
Query Builder