17 matches found
ASB-A-281534749
In FillUi of FillUi.java, there is a possible way to view another user's images. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
ASB-A-283101289
In FillUi of FillUi.java, there is a possible way to view another users images. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
ASB-A-281533566
In FillUi of FillUi.java, there is a possible way to view other user's image due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-40139
In FillUi of FillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-40139
In FillUi of FillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-40138
In FillUi of FillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
Information disclosure
In FillUi of FillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
Information disclosure
In FillUi of FillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-40139
In FillUi of FillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-40138
In FillUi of FillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-40138
In FillUi of FillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-40138
CVE-2023-40138 affects the FillUi component (FillUi.java) in Android, enabling information disclosure by viewing another user’s images via a confused deputy. The vulnerability can be exploited locally without user interaction, and the impact is local information exposure with no added executable ...
CVE-2023-40139
In FillUi of FillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-40139
The CVE-2023-40139 entry describes a local information-disclosure vulnerability in the Android FillUi component (FillUi.java) that allows an attacker to view another user’s images due to a confused deputy. Exploitation requires no user interaction and can occur with local access; no remote/vector...
CVE-2023-40134
In isFullScreen of FillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
PT-2023-27290 · Fillui · Fillui
Name of the Vulnerable Software and Affected Versions: FillUi affected versions not specified Description: The issue in FillUi allows an attacker to view another user's images due to a confused deputy, potentially leading to local information disclosure without requiring additional execution...
PT-2023-27291 · Fillui · Fillui
Name of the Vulnerable Software and Affected Versions: FillUi affected versions not specified Description: The issue in FillUi.java allows for local information disclosure due to a confused deputy, enabling the viewing of another user's images without requiring additional execution privileges or...