120 matches found
CVE-2021-39750
In PackageManager, there is a possible way to change the splash screen theme of other apps due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
CVE-2021-39743
In PackageManager, there is a possible way to update the last usage time of another package due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
Privilege escalation
In PackageManager, there is a possible way to update the last usage time of another package due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
Privilege escalation
In PackageManager, there is a possible way to change the splash screen theme of other apps due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
CVE-2021-39750
In PackageManager, there is a possible way to change the splash screen theme of other apps due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
CVE-2021-39750
CVE-2021-39750 is an Android Elevation of Privilege issue where missing permission checks in PackageManager could allow an attacker to change the splash screen theme of other apps, leading to local privilege escalation. Connected sources (CNVD-2022-26771) reference the root cause as an absence of...
CVE-2021-39743
CVE-2021-39743 affects Google Android 12L in the PackageManager component, where a missing permission check allows updating another package’s last-used time and enables local elevation of privilege with no extra execution privileges needed. The vulnerability is classified as EoP and is documented...
CVE-2021-39743
In PackageManager, there is a possible way to update the last usage time of another package due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
Google Android 安全漏洞
Google Android is a Linux-based open-source operating system from the U.S. company Google. Google Android has a security vulnerability that stems from a lack of privilege checks in PackageManager, which could be exploited by attackers to escalate privileges...
CVE-2021-39624
In PackageManager, there is a possible permanent denial of service due to resource exhaustion. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12...
Denial of service
In PackageManager, there is a possible permanent denial of service due to resource exhaustion. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12...
CVE-2021-39624
In PackageManager, there is a possible permanent denial of service due to resource exhaustion. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12...
ASB-A-196855999
In multiple methods of EuiccNotificationManager.java, there is a possible way to install existing packages without user consent due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation...
Samsung PackageManager has an unspecified vulnerability
Samsung PackageManager is an application from Samsung Korea. A security vulnerability exists in versions prior to Samsung PackageManager SMR July-2021 Release 1, which can be exploited by attackers to gain dangerous levels of privileges without user confirmation in limited circumstances...
CVE-2021-25428
Improper validation check vulnerability in PackageManager prior to SMR July-2021 Release 1 allows untrusted applications to get dangerous level permission without user confirmation in limited circumstances...
CVE-2021-25428
Improper validation check vulnerability in PackageManager prior to SMR July-2021 Release 1 allows untrusted applications to get dangerous level permission without user confirmation in limited circumstances...
Input validation
Improper validation check vulnerability in PackageManager prior to SMR July-2021 Release 1 allows untrusted applications to get dangerous level permission without user confirmation in limited circumstances...
CVE-2021-25428
The CVE-2021-25428 entry concerns Samsung’s PackageManager, affected before the SMR July-2021 Release 1. The root cause is an improper validation check in PackageManager that can let untrusted apps obtain dangerous level permissions without user confirmation in limited circumstances (local, low c...
CVE-2021-25428
Improper validation check vulnerability in PackageManager prior to SMR July-2021 Release 1 allows untrusted applications to get dangerous level permission without user confirmation in limited circumstances...
PackageManager安全漏洞
Samsung PackageManager is an application from Samsung Korea. A security vulnerability exists in versions prior to Samsung PackageManager SMR July-2021 Release 1, which can be exploited by attackers to gain dangerous levels of privileges without user confirmation in limited circumstances...