CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

76 matches found

Vulnrichment•added 2022/12/13 12:0 a.m.•5 views

CVE-2022-20480

In NotificationChannel of NotificationChannel.java, there is a possible failure to persist permissions settings due to resource exhaustion. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.3AI score0.00031EPSS

Exploits0References1

Positive Technologies•added 2022/12/13 12:0 a.m.•3 views

PT-2022-14703 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-10 through Android-13 Description: In NotificationChannel of NotificationChannel.java, there is a possible failure to persist permissions settings due to resource exhaustion. This could lead to local escalation of...

7.8CVSS6.8AI score0.00014EPSS

Exploits0References7

CVE•added 2022/12/13 12:0 a.m.•128 views

CVE-2022-20486

CVE-2022-20486 affects Android (Android-10, -11, -12, -12L, -13) where NotificationChannel.java may fail to persist permissions due to resource exhaustion, enabling local elevation of privilege with no extra execution privileges required. The issue is described as a resource-exhaustion vulnerabil...

7.8CVSS7.7AI score0.00014EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/12/13 12:0 a.m.•16 views

CVE-2022-20478

7.9AI score0.00031EPSS

Exploits0References1

Cvelist•added 2022/12/13 12:0 a.m.•15 views

CVE-2022-20488

7.9AI score0.00014EPSS

Exploits0References1

Vulnrichment•added 2022/12/13 12:0 a.m.•4 views

CVE-2022-20479

7.3AI score0.00014EPSS

Exploits0References1

Positive Technologies•added 2022/12/13 12:0 a.m.•1 views

PT-2022-14705 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-10 through Android-13 Description: The issue is related to a possible failure to persist permissions settings in the NotificationChannel of NotificationChannel.java due to resource exhaustion. This could lead to local...

7.8CVSS6.8AI score0.00014EPSS

Exploits0References7

CVE•added 2022/12/13 12:0 a.m.•133 views

CVE-2022-20484

CVE-2022-20484 affects Android 10–13 where NotificationChannel.java’s permission persistence can fail due to resource exhaustion, enabling local elevation of privilege with no user interaction needed. CVSSv3.1 metrics indicate LOCAL access, LOW privileges, UI None, and HIGH impact on confidential...

7.8CVSS7.6AI score0.00014EPSS

Exploits0References1Affected Software1

CVE•added 2022/12/13 12:0 a.m.•146 views

CVE-2022-20485

CVE-2022-20485 affects Android’s NotificationChannel.java across Android 10–13 (including 12L/12) and is due to a resource-exhaustion path that can fail to persist permissions settings. The issue enables local elevation of privilege with no extra execution privileges required and no user interact...

7.8CVSS7.7AI score0.00014EPSS

Exploits0References1Affected Software1

CVE•added 2022/12/13 12:0 a.m.•127 views

CVE-2022-20488

Technical details about CVE-2022-20488 are not publicly provided in the supplied documents. Monitor for updates from Android advisories and related sources for patch status and affected versions.

7.8CVSS7.6AI score0.00014EPSS

Exploits0References1Affected Software1

CNNVD•added 2022/12/05 12:0 a.m.•2 views

Google Pixel 资源管理错误漏洞

Google Android is a Linux-based open source operating system from Google, Inc. An elevation of privilege vulnerability exists in Google Android due to a resource exhaustion vulnerability in the NotificationChannel.java component. The vulnerability can be exploited by attackers to gain elevated...

7.8CVSS7.1AI score0.00014EPSS

Exploits0References3