Lucene search
K

31 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:32 a.m.6 views

CVE-2024-40672

In onCreate of ChooserActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS7.1AI score0.00085EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 5:20 a.m.10 views

CVE-2023-21140

In onCreate of ManagePermissionsActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. This could lead to local escalation of privilege with physical access to a device that's been factory reset with no additional execution privileges needed...

6.8CVSS6.5AI score0.00125EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:7 a.m.5 views

CVE-2023-20957

In onAttach of SettingsPreferenceFragment.java, there is a possible bypass of Factory Reset Protections due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.8CVSS6.8AI score0.00088EPSS
Exploits0References1
CVE
CVE
added 2025/01/28 7:13 p.m.168 views

CVE-2024-40672

CVE-2024-40672 affects Android’s ChooserActivity.java, where a missing permission check in onCreate could bypass factory reset protections. This enables local elevation of privilege with no extra execution privileges or user interaction required. Documented impact is a local EoP; exploitation det...

8.4CVSS7.4AI score0.00085EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/01/28 7:13 p.m.14 views

CVE-2024-40672

In onCreate of ChooserActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00085EPSS
Exploits0References2
OSV
OSV
added 2024/10/01 12:0 a.m.17 views

ASB-A-327748846

In shouldSkipForInitialSUW of AdvancedPowerUsageDetail.java, there is a possible way to bypass factory reset protections due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

8.4CVSS7.4AI score0.00085EPSS
Exploits0References2
OSV
OSV
added 2023/08/14 10:15 p.m.6 views

CVE-2023-21275

In decideCancelProvisioningDialog of AdminIntegratedFlowPrepareActivity.java, there is a possible way to bypass factory reset protections due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not need...

7.8CVSS5.9AI score0.00215EPSS
Exploits0References2
Prion
Prion
added 2023/08/14 10:15 p.m.19 views

Design/Logic Flaw

In decideCancelProvisioningDialog of AdminIntegratedFlowPrepareActivity.java, there is a possible way to bypass factory reset protections due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not need...

4.3CVSS7.7AI score0.00215EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2023/08/14 9:15 p.m.19 views

CVE-2023-21133

In onCreate of ManagePermissionsActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. This could lead to local escalation of privilege with physical access to a device that's been factory reset with no additional execution privileges needed...

6.8CVSS6.7AI score0.00125EPSS
Exploits0References2
NVD
NVD
added 2023/08/14 9:15 p.m.24 views

CVE-2023-21140

In onCreate of ManagePermissionsActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. This could lead to local escalation of privilege with physical access to a device that's been factory reset with no additional execution privileges needed...

6.8CVSS6.7AI score0.00125EPSS
Exploits0References2
Prion
Prion
added 2023/08/14 9:15 p.m.20 views

Design/Logic Flaw

In onCreate of ManagePermissionsActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. This could lead to local escalation of privilege with physical access to a device that's been factory reset with no additional execution privileges needed...

4.6CVSS6.7AI score0.00125EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/08/14 9:15 p.m.18 views

Design/Logic Flaw

In onCreate of ManagePermissionsActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. This could lead to local escalation of privilege with physical access to a device that's been factory reset with no additional execution privileges needed...

4.6CVSS6.7AI score0.00125EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/08/14 9:15 p.m.14 views

Design/Logic Flaw

In onCreate of ManagePermissionsActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. This could lead to local escalation of privilege with physical access to a device that's been factory reset with no additional execution privileges needed...

4.6CVSS6.8AI score0.00125EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/08/14 8:58 p.m.24 views

CVE-2023-21140

In onCreate of ManagePermissionsActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. This could lead to local escalation of privilege with physical access to a device that's been factory reset with no additional execution privileges needed...

6.9AI score0.00125EPSS
Exploits0References2
CVE
CVE
added 2023/08/14 8:57 p.m.143 views

CVE-2023-21132

The CVE-2023-21132 issue originates in Android’s ManagePermissionsActivity.java onCreate, enabling local escalation of privilege when an attacker with physical device access can bypass factory reset protections due to a missing permission check. Affected component is the Android OS userland code ...

6.8CVSS6.7AI score0.00125EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/08/14 12:0 a.m.5 views

PT-2023-17926 · Google · Android

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to a missing permission check in the onCreate method of ManagePermissionsActivity.java. This could allow bypassing factory reset...

6.8CVSS6.6AI score0.00125EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/08/14 12:0 a.m.4 views

PT-2023-17925 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: The issue is related to a missing permission check in the onCreate method of ManagePermissionsActivity.java. This could allow bypassing factory reset protections, leading to local escalatio...

6.8CVSS6.5AI score0.00125EPSS
Exploits0References5
NVD
NVD
added 2023/03/24 8:15 p.m.16 views

CVE-2023-20957

In onAttach of SettingsPreferenceFragment.java, there is a possible bypass of Factory Reset Protections due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.8CVSS7.8AI score0.00088EPSS
Exploits0References1
NVD
NVD
added 2023/03/24 8:15 p.m.29 views

CVE-2023-20926

In onParentVisible of HeaderPrivacyIconsController.kt, there is a possible way to bypass factory reset protections due to a missing permission check. This could lead to local escalation of privilege with physical access to a device that's been factory reset with no additional execution privileges...

6.8CVSS6.7AI score0.00142EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/03/24 12:0 a.m.14 views

CVE-2023-20957

In onAttach of SettingsPreferenceFragment.java, there is a possible bypass of Factory Reset Protections due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

8AI score0.00088EPSS
Exploits0References1
Rows per page
Query Builder