9 matches found
Google Android elevation of privilege vulnerability (CNVD-2023-55377)
Google Android is a Linux-based open source operating system from Google. Google Android suffers from an information disclosure vulnerability that originates from improper privilege management in the SecureNfcEnabler.java and SecureNfcPreferenceController.java components, which can be exploited b...
CVE-2023-21086
In isToggleable of SecureNfcEnabler.java and SecureNfcPreferenceController.java, there is a possible way to enable NFC from a secondary account due to a permissions bypass. This could lead to local escalation of privilege from the Guest account with no additional execution privileges needed. User...
Google Android 安全漏洞
Google Android is a Linux-based open source operating system from Google. Google Android suffers from an information disclosure vulnerability that originates from improper privilege management in the SecureNfcEnabler.java and SecureNfcPreferenceController.java components, which can be exploited b...
CVE-2023-21086
In isToggleable of SecureNfcEnabler.java and SecureNfcPreferenceController.java, there is a possible way to enable NFC from a secondary account due to a permissions bypass. This could lead to local escalation of privilege from the Guest account with no additional execution privileges needed. User...
PT-2023-17879 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android versions Android-11 through Android-13 Description: The issue is related to a permissions bypass in the isToggleable method of SecureNfcEnabler.java and SecureNfcPreferenceController.java. This could allow enabling NFC from a secondar...
CVE-2023-21086
In isToggleable of SecureNfcEnabler.java and SecureNfcPreferenceController.java, there is a possible way to enable NFC from a secondary account due to a permissions bypass. This could lead to local escalation of privilege from the Guest account with no additional execution privileges needed. User...
Google Android Elevation of Privilege Vulnerability (CNVD-2022-44604)
Google Android is a Linux-based open source operating system from Google, Inc. An elevation of privilege vulnerability exists in Google Android, which stems from a missing privilege check in handleNfcStateChanged of SecureNfcEnabler.java. An attacker could exploit this vulnerability to cause a...
Privilege escalation
In handleNfcStateChanged of SecureNfcEnabler.java, there is a possible way to enable NFC from the Guest account due to a missing permission check. This could lead to local escalation of privilege from the Guest account with no additional execution privileges needed. User interaction is not needed...
ASB-A-209446496
In handleNfcStateChanged of SecureNfcEnabler.java, there is a possible way to enable NFC from the Guest account due to a missing permission check. This could lead to local escalation of privilege from the Guest account with no additional execution privileges needed. User interaction is not needed...