111 matches found
CVE-2023-42672
In imsservice, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed...
CVE-2023-42671
The CVE-2023-42671 issue affects imsservice and stems from a missing permission check, allowing an app to write permission usage records and potentially disclose information locally. This is a local information disclosure vulnerability with no additional execution privileges required. Affected co...
CVE-2023-42672
The CVE-2023-42672 entry concerns UNISOC/imsservice with a missing permission check, enabling an attacker to write permission usage records and cause local information disclosure without executing code. Affected component: imsservice in UNISOC chipsets. Root cause: absence of permission validatio...
CVE-2023-42671
In imsservice, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed...
PT-2023-28496 · Unknown · Imsservice
Name of the Vulnerable Software and Affected Versions: imsservice affected versions not specified Description: The issue in imsservice allows for writing permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional...
PT-2023-28525 · Unknown · Imsservice
Name of the Vulnerable Software and Affected Versions: imsservice affected versions not specified Description: The issue is related to a missing permission check in imsservice, which could allow writing permission usage records of an app. This might lead to local information disclosure without...
PT-2023-28494 · Unknown · Imsservice
Name of the Vulnerable Software and Affected Versions: imsservice affected versions not specified Description: The issue is related to a missing permission check in imsservice, which could allow writing permission usage records of an app. This may lead to local information disclosure without...
PT-2023-28492 · Unknown · Imsservice
Name of the Vulnerable Software and Affected Versions: imsservice affected versions not specified Description: The issue is related to a missing permission check in imsservice, allowing potential local information disclosure without requiring additional execution privileges. This could lead to...
PT-2023-28526 · Unknown · Imsservice
Name of the Vulnerable Software and Affected Versions: imsservice affected versions not specified Description: The issue is related to a missing permission check in imsservice, which could allow writing permission usage records of an app. This may lead to local information disclosure without...
PT-2023-28490 · Unknown · Imsservice
Name of the Vulnerable Software and Affected Versions: imsservice affected versions not specified Description: The issue is related to a missing permission check in imsservice, allowing an app's permission usage records to be written. This could lead to local information disclosure without...
PT-2023-28493 · Unisoc · Unisoc
Name of the Vulnerable Software and Affected Versions: imsservice affected versions not specified Description: The issue is related to a missing permission check in imsservice, which could allow writing permission usage records of an app. This might lead to local information disclosure without...
CVE-2023-21153
In DoAIMSSETCALLWAITING of imsservice.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroi...
Google Pixel 缓冲区错误漏洞
Google Pixel is a smartphone from Google, Inc. in the United States. A security vulnerability exists in Google Pixel, which stems from the presence of a missing bounds check in the DoAIMSSETCALLWAITING of the imsservice.cpp file, which may result in an out-of-bounds read...
CVE-2022-39856
Improper access control vulnerability in imsservice application prior to SMR Oct-2022 Release 1 allows local attackers to access call information...
CVE-2022-39856
Improper access control vulnerability in imsservice application prior to SMR Oct-2022 Release 1 allows local attackers to access call information...
CVE-2022-39856
Improper access control vulnerability in imsservice application prior to SMR Oct-2022 Release 1 allows local attackers to access call information...
Improper access control
Improper access control vulnerability in imsservice application prior to SMR Oct-2022 Release 1 allows local attackers to access call information...
SAMSUNG Mobile devices 安全漏洞
SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices SMR Oct-2022 Release 1 version, which stems from an improper access control vulnerability in...
CVE-2022-39856
Improper access control vulnerability in imsservice application prior to SMR Oct-2022 Release 1 allows local attackers to access call information...
PT-2022-25046 · Unknown · Imsservice
Name of the Vulnerable Software and Affected Versions: imsservice application prior to SMR Oct-2022 Release 1 Description: The issue is related to improper access control in the imsservice application, allowing local attackers to access call information. Recommendations: For versions prior to SMR...