Lucene search
K

4 matches found

CVE
CVE
added 2026/06/17 7:21 a.m.11 views

CVE-2026-28587

CVE-2026-28587 affects the MmsSmsProvider component (MmsSmsProvider.java), enabling local information disclosure via a missing permission check. Exploitation requires no user interaction and does not require additional privileges; impact is confined to information disclosure. The vulnerability is...

10CVSS5.5AI score0.00115EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2022/12/16 4:15 p.m.5 views

CVE-2022-42535

In a query in MmsSmsProvider.java, there is a possible access to restricted tables due to SQL injection. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-2247701...

5.5CVSS5.9AI score0.00151EPSS
Exploits0References1
OSV
OSV
added 2022/12/16 4:15 p.m.3 views

CVE-2022-20517

In getMessagesByPhoneNumber of MmsSmsProvider.java, there is a possible access to restricted tables due to SQL injection. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

5.5CVSS6AI score0.00211EPSS
Exploits0References1
OSV
OSV
added 2020/03/10 8:15 p.m.5 views

CVE-2020-0060

In query of SmsProvider.java and MmsSmsProvider.java, there is a possible permission bypass due to SQL injection. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID...

4.4CVSS5.9AI score0.00167EPSS
Exploits0References1
Rows per page
Query Builder