11 matches found
EUVD-2023-25265
Malicious code in bioql PyPI...
CVE-2023-21097
In toUriInner of Intent.java, there is a possible way to launch an arbitrary activity due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11...
Google Android Intent.java file input validation error vulnerability
Google Android is a Linux-based open source operating system from Google. Google Android suffers from an input validation error vulnerability that stems from incorrect input validation in the parseUriInternal function of Intent.java, which can be exploited by an attacker to cause an infinite loop...
UBUNTU-CVE-2024-40675
In parseUriInternal of Intent.java, there is a possible infinite loop due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-40675
In parseUriInternal of Intent.java, there is a possible infinite loop due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-40675
In parseUriInternal of Intent.java, there is a possible infinite loop due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...
Google Android 安全漏洞
Google Android is a Linux-based open source operating system from Google. Google Android suffers from an input validation error vulnerability that stems from incorrect input validation in the parseUriInternal function of Intent.java, which can be exploited by an attacker to cause an infinite loop...
ASB-A-318683126
In parseUriInternal of Intent.java, there is a possible infinite loop due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-21097
In toUriInner of Intent.java, there is a possible way to launch an arbitrary activity due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11...
CVE-2023-21097
In toUriInner of Intent.java, there is a possible way to launch an arbitrary activity due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11...
CVE-2023-21097
CVE-2023-21097 describes a local elevation of privilege in Android caused by a bug in toUriInner within Intent.java, allowing an attacker to launch an arbitrary activity. The vulnerability is classified as high severity (CVSS v3.1: LOCAL, LOW PRIVILEGES, UI:N, C:H/I:H/A:H) and affects Android 11,...