120 matches found
CVE-2022-20328
CVE-2022-20328 affects Android 13 and relates to the PackageManager. The vulnerability arises from a missing permission check that can allow an attacker to determine whether an app is installed, enabling local information disclosure without requiring additional execution privileges. Exploitation ...
CVE-2022-20323
In PackageManager, there is a possible package installation disclosure due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-187176...
CVE-2022-20323
CVE-2022-20323 affects Android 13, with a missing permission check in the PackageManager that can disclose local information. The issue enables a local information disclosure vulnerability without user interaction, requiring user privileges. Vulnerable component: PackageManager (Android framework...
CVE-2022-20322
CVE-2022-20322 affects Android 13 where the PackageManager may disclose installed package information due to a missing permission check. The issue enables local information disclosure without extra execution privileges and without user interaction. The vulnerability is classified as Local (ATT&CK...
CVE-2022-20322
In PackageManager, there is a possible installed package disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...
CVE-2022-20285
In PackageManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...
CVE-2022-20285
CVE-2022-20285 affects Android 13 and involves a side-channel in PackageManager that can reveal whether an app is installed without query permissions, enabling local information disclosure with no user interaction. Affected component: PackageManager/framework behavior in Android 13; root cause is...
CVE-2022-20252
In PackageManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...
CVE-2022-20252
In PackageManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...
CVE-2021-0735
In PackageManager, there is a possible way to get information about installed packages ignoring limitations introduced in Android 11 due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed fo...
Information disclosure
In PackageManager, there is a possible way to get information about installed packages ignoring limitations introduced in Android 11 due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed fo...
Information disclosure
In PackageManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...
CVE-2022-20252
CVE-2022-20252 is a vulnerability in Android 13’s PackageManager where an attacker can deduce whether an app is installed without query permissions due to a side-channel information disclosure. This enables local information disclosure with no extra execution privileges required; exploitation req...
CVE-2022-20252
In PackageManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...
CVE-2021-0735
In PackageManager, there is a possible way to get information about installed packages ignoring limitations introduced in Android 11 due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed fo...
CVE-2021-0735
CVE-2021-0735 affects Android 13, where a missing permission check in PackageManager allows information disclosure about installed packages without extra privileges. Vulnerable component: PackageManager; root cause: failure to enforce Android 11+ limitations, enabling local information disclosure...
PT-2022-14554 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android version Android-13 Description: In PackageManager, there is a possible way to determine whether an app is installed due to a missing permission check. This could lead to local information disclosure with no additional execution...
PT-2022-14475 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: The issue concerns a side channel information disclosure in PackageManager, allowing an attacker to determine whether an app is installed without requiring query permissions. This could lead to local...
Google Android Elevation of Privilege Vulnerability (CNVD-2022-26771)
Google Android is a Linux-based open-source operating system from the U.S. company Google. Google Android has a security vulnerability that stems from a lack of privilege checks in PackageManager, which could be exploited by attackers to escalate privileges...
Google Android Elevation of Privilege Vulnerability (CNVD-2022-28926)
Google Android is a Linux-based open source operating system from Google, Inc. An elevation of privilege vulnerability exists in Google Android, which stems from a lack of privilege checking in PackageManager. An attacker could exploit this vulnerability to cause a local elevation of privilege...