Google Android Framework elevation of privilege vulnerability (CNVD-2019-38881)

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA, of which Framework is a component of the Android framework. There is an elevation of privilege vulnerability in Framework in Android. An attacker can exploit this vulnerability to elevate...

Google Android Framework elevation of privilege vulnerability (CNVD-2019-38882)

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA, of which Framework is a component of the Android framework. There is an elevation of privilege vulnerability in Framework in Android. An attacker can exploit this vulnerability to elevate...

Google Android Framework elevation of privilege vulnerability (CNVD-2019-23120)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Framework component of Google Android 7.0, 7.1.1, 7.1.2, 8.0, and 8.1. An attacker can exploit the vulnerability to cause a...

Google Android Framework elevation of privilege vulnerability (CNVD-2019-23119)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Framework component of Google Android 7.0, 7.1.1, 7.1.2, 8.0, 8.1, and 9. An attacker can exploit the vulnerability to...

Google Android Framework elevation of privilege vulnerability (CNVD-2019-23121)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Framework component of Google Android 7.0, 7.1.1, 7.1.2, 8.0, 8.1, and 9. An attacker can exploit the vulnerability to...

Google Android Framework SmsDefaultDialog.java file elevation of privilege vulnerability

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the SmsDefaultDialog.onStart file in Android. An attacker can exploit this vulnerability to bypass user interaction requests and gain additional...

Google Android Framework elevation of privilege vulnerability (CNVD-2019-23558)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Framework component of Google Android 7.0, 7.1.1, 7.1.2, 8.0, 8.1, and 9. This could lead to remote code execution or click...

Google Android Framework Information Disclosure Vulnerability (CNVD-2019-10472)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An information disclosure vulnerability exists in Framework in Google Android, which can be exploited by attackers to disclose information...

Google Android Framework Component Remote Code Execution Vulnerability (CNVD-2019-23563)

Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. A remote code execution vulnerability exists in the Framework component of Google Android 7.0, 7.1.1, 7.1.2, 8.0, 8.1, and 9. An attacker can exploit the vulnerability to...

Google Android Framework Component Elevation of Privilege Vulnerability

Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. An elevation of privilege vulnerability exists in the Framework component of Google Android 8.0, 8.1, and 9. An attacker can exploit this vulnerability to achieve elevati...

Command injection

The MXQ TV Box 4.4.2 Android device with a build fingerprint of MBX/m201N/m201N:4.4.2/KOT49H/20160106:user/test-keys contains the Android framework with a package name of android versionCode=19, versionName=4.4.2-20170213 that contains an exported broadcast receiver application component that, wh...

CVE-2018-14988

The MXQ TV Box 4.4.2 Android device with a build fingerprint of MBX/m201N/m201N:4.4.2/KOT49H/20160106:user/test-keys contains the Android framework with a package name of android versionCode=19, versionName=4.4.2-20170213 that contains an exported broadcast receiver application component that, wh...

CVE-2018-14987

The CVE-2018-14987 entry concerns the MXQ TV Box (Android 4.4.2) where the Android framework dynamically registers a broadcast receiver component, com.android.server.MasterClearReceiver, instead of static registration in the core Android manifest. This dynamic registration is not protected by the...

CVE-2018-14988

The CVE-2018-14988 entry describes an issue in MXQ TV Box 4.4.2 where an exported Android framework broadcast receiver component (com.android.server.SystemRestoreReceiver) is accessible without permissions and can write to /cache/recovery/command to trigger boot into recovery mode. This can forma...

Google Android Framework elevation of privilege vulnerability (CNVD-2018-22762)

Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. An elevation of privilege vulnerability exists in the Framework component of Google Android 7.0, 7.1.1, 7.1.2, 8.0, 8.1, which can be exploited by an attacker to elevate...

Google Android Framework elevation of privilege vulnerability (CNVD-2018-22760)

Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. An elevation of privilege vulnerability exists in the Framework component of Google Android 7.0, 7.1.1, 7.1.2, 8.0, 8.1, and 9, which can be exploited by an attacker to...

Vulnerability of the AMediaCodecCryptoInfo_new function in the Android operating system’s framework component, allowing a hacker to execute arbitrary code

The vulnerability of the AMediaCodecCryptoInfonew function in NdkMediaCodec.cpp of the Android operating system’s framework is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code using a...

The vulnerability of the `checkGrantUriPermissionLocked` function in the Android operating system’s Framework component, which allows a hacker to escalate their privileges

The vulnerability of the checkGrantUriPermissionLocked function in the ActivityManagerService.java file of the Android operating system’s framework is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to increase their privileges through a...

The vulnerability of the getOffsetForHorizontal function in the Framework component of the Android operating system allows a hacker to trigger a service failure.

The vulnerability of the getOffsetForHorizontal function in the Layout.java component of the Android operating system’s framework is related to improper cleaning or release of resources. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

Google Android Framework elevation of privilege vulnerability (CNVD-2018-22766)

Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. An elevation of privilege vulnerability exists in the Framework component of Google Android 7.1.1, 7.1.2, 8.0, 8.1, and 9, which can be exploited by an attacker to elevat...