Lucene search
K

20 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/02 6:42 p.m.3 views

CVE-2025-48650

In multiple locations, there is a possible information disclosure due to SQL injection. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS6.1AI score0.00114EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/09/01 7:28 a.m.8 views

CVE-2022-38695

In BootRom, there's a possible unchecked command index. This could lead to local escalation of privilege with no additional execution privileges needed...

0.00192EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:21 p.m.5 views

CVE-2022-39114

In Music service, there is a missing permission check. This could lead to local denial of service in Music service with no additional execution privileges needed...

5.5CVSS5.3AI score0.00097EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:44 p.m.6 views

CVE-2021-39631

In cleardatadlgtext of strings.xml, there is a possible situation when "Clear storage" functionality sets up the wrong security/privacy expectations due to a misleading message. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not...

5.5CVSS6.3AI score0.00111EPSS
Exploits0References1
OSV
OSV
added 2023/11/01 10:15 a.m.5 views

CVE-2023-42635

In validationtools, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed...

5.5CVSS5.9AI score0.0008EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/10/30 12:0 a.m.6 views

PT-2023-18165 · Sim · Sim

Name of the Vulnerable Software and Affected Versions: Sim affected versions not specified Description: The issue is related to a permission bypass that allows evading mobile preference restrictions. This could lead to local escalation of privilege with no additional execution privileges needed...

7.8CVSS6.7AI score0.001EPSS
Exploits0References4
OSV
OSV
added 2023/09/04 2:15 a.m.3 views

CVE-2023-38438

In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges...

5.5CVSS5.9AI score
Exploits0References1
OSV
OSV
added 2023/09/04 2:15 a.m.3 views

CVE-2023-33916

In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges...

5.5CVSS5.9AI score0.00081EPSS
Exploits0References1
Prion
Prion
added 2023/08/14 10:15 p.m.24 views

Out-of-bounds

In convertSubgraphFromHAL of ShimConverter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

1.7CVSS5.1AI score0.00104EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/07/12 9:15 a.m.5 views

CVE-2023-33901

In bluetooth service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed...

5.5CVSS5.9AI score0.00084EPSS
Exploits0References1
OSV
OSV
added 2023/07/12 9:15 a.m.3 views

CVE-2023-33902

In bluetooth service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed...

5.5CVSS5.9AI score0.00153EPSS
Exploits0References1
OSV
OSV
added 2023/07/12 9:15 a.m.5 views

CVE-2023-30931

In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed...

5.5CVSS5.9AI score0.0008EPSS
Exploits0References1
OSV
OSV
added 2023/03/10 9:15 p.m.2 views

CVE-2022-47479

In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed...

5.5CVSS5.9AI score0.00089EPSS
Exploits0References1
Prion
Prion
added 2022/08/12 3:15 p.m.17 views

Information disclosure

In AppOpsService, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

1.7CVSS5.3AI score0.00095EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2022/01/04 4:15 p.m.5 views

CVE-2022-20022

In Bluetooth, there is a possible link disconnection due to bluetooth does not properly handle a connection attempt from a host with the same BD address as the currently connected BT host. This could lead to remote denial of service of bluetooth with no additional execution privileges needed. Use...

6.5CVSS6.7AI score0.00267EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/12/06 12:0 a.m.6 views

Google Android 信息泄露漏洞

Google Android is a Linux-based open source operating system from Google, Inc. An information disclosure vulnerability exists in Google Android, which can be exploited by attackers to cause local information disclosure without additional execution privileges...

3.3CVSS5.9AI score0.00104EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/10/04 12:0 a.m.1 views

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google Inc. in the United States. Google Android suffers from a security vulnerability that could lead to the disclosure of remote information without additional execution privileges...

5.8AI score
Exploits0References3
NVD
NVD
added 2020/12/14 10:15 p.m.25 views

CVE-2020-0464

In resolvcachelookup of rescache.cpp, there is a possible side channel information disclosure. This could lead to local information disclosure of accessed web resources with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

5.5CVSS5AI score0.00159EPSS
Exploits0References1
Prion
Prion
added 2020/06/11 3:15 p.m.13 views

Heap overflow

In ideintweaveblk of ideintutils.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-1403248...

6.8CVSS8.9AI score0.00747EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2019/09/27 7:15 p.m.4 views

CVE-2019-2169

In libxaac there is a possible information disclosure due to uninitialized data. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-118492282...

6.5CVSS5.9AI score0.00583EPSS
Exploits0References1
Rows per page
Query Builder