Lucene search
K

120 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:59 p.m.5 views

CVE-2020-0289

In PackageManager, there is a missing permission check. This could lead to local information disclosure across users with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-153996872...

5.5CVSS6.2AI score0.00135EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:59 p.m.4 views

CVE-2020-0290

In PackageManager, there is a missing permission check. This could lead to local information disclosure across users with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-153996866...

5.5CVSS6.2AI score0.00132EPSS
Exploits0References1
OSV
OSV
added 2023/12/01 12:0 a.m.33 views

ASB-A-247513680

In saveToXml of PersistableBundle.java, invalid data could lead to local persistent denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.4AI score0.00136EPSS
Exploits0References2
NVD
NVD
added 2023/10/30 5:15 p.m.17 views

CVE-2023-21300

In PackageManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitati...

5.5CVSS5.1AI score0.00091EPSS
Exploits0References1
Prion
Prion
added 2023/10/30 5:15 p.m.22 views

Information disclosure

In PackageManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitati...

1.7CVSS5.6AI score0.00091EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/10/30 4:56 p.m.39 views

CVE-2023-21300

Summary: CVE-2023-21300 affects Android’s PackageManager and arises from a side-channel information disclosure that allows a local attacker to infer whether an app is installed without query permissions. This is described as a local information disclosure with no additional execution privileges r...

5.5CVSS5.6AI score0.00091EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/30 4:56 p.m.14 views

CVE-2023-21300

In PackageManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitati...

6.1AI score0.00091EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/10/30 4:56 p.m.15 views

CVE-2023-21300

In PackageManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitati...

6AI score0.00091EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/10/30 12:0 a.m.4 views

PT-2023-18080 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: The issue concerns a side channel information disclosure in PackageManager, allowing an attacker to determine whether an app is installed without requiring query permissions. This could lea...

5.5CVSS5.1AI score0.00091EPSS
Exploits0References3
OSV
OSV
added 2023/10/08 4:15 a.m.4 views

CVE-2023-40653

In FW-PackageManager, there is a possible missing permission check. This could lead to local escalation of privilege with System execution privileges needed...

6.7CVSS5.9AI score0.00082EPSS
Exploits0References1
NVD
NVD
added 2023/10/08 4:15 a.m.13 views

CVE-2023-40654

In FW-PackageManager, there is a possible missing permission check. This could lead to local escalation of privilege with System execution privileges needed...

6.7CVSS6.7AI score0.00083EPSS
Exploits0References1
NVD
NVD
added 2023/10/08 4:15 a.m.30 views

CVE-2023-40653

In FW-PackageManager, there is a possible missing permission check. This could lead to local escalation of privilege with System execution privileges needed...

6.7CVSS6.7AI score0.00082EPSS
Exploits0References1
Prion
Prion
added 2023/10/08 4:15 a.m.22 views

Design/Logic Flaw

In FW-PackageManager, there is a possible missing permission check. This could lead to local escalation of privilege with System execution privileges needed...

4CVSS6.7AI score0.00082EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/10/08 3:36 a.m.27 views

CVE-2023-40653

In FW-PackageManager, there is a possible missing permission check. This could lead to local escalation of privilege with System execution privileges needed...

6.9AI score0.00082EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/10/08 3:36 a.m.16 views

CVE-2023-40654

In FW-PackageManager, there is a possible missing permission check. This could lead to local escalation of privilege with System execution privileges needed...

6.9AI score0.00083EPSS
Exploits0References1
CVE
CVE
added 2023/10/08 3:36 a.m.54 views

CVE-2023-40654

CVE-2023-40654 affects FW-PackageManager due to a missing permission check, enabling local privilege escalation with System execution privileges. Public references describe the issue across multiple feeds (NVD, Red Hat, PRION, CVE list, CNNVD, PT-Security) but do not provide a product version or ...

6.7CVSS6.7AI score0.00083EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/10/08 3:36 a.m.46 views

CVE-2023-40653

CVE-2023-40653 concerns the FW-PackageManager with a missing permission check that could enable local escalation of privileges to SYSTEM. Multiple connected sources corroborate the description across vendors and databases (NVD, Red Hat, CVE/CVE List, CNNVD, PT-2023-27575). The core impact is loca...

6.7CVSS6.7AI score0.00082EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/08 3:36 a.m.12 views

CVE-2023-40654

In FW-PackageManager, there is a possible missing permission check. This could lead to local escalation of privilege with System execution privileges needed...

7.4AI score0.00083EPSS
Exploits0References1
OSV
OSV
added 2023/10/01 12:0 a.m.25 views

ASB-A-266580022

In multiple locations, there is a possible way to crash multiple system services due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.4AI score0.0014EPSS
Exploits0References4
OSV
OSV
added 2023/03/01 12:0 a.m.25 views

ASB-A-242537498

In addPermission of PermissionManagerServiceImpl.java , there is a possible failure to persist permission settings due to resource exhaustion. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.8AI score0.0018EPSS
Exploits0References2
Rows per page
Query Builder