30 matches found
CVE-2021-39668
In onActivityViewReady of DetailDialog.kt, there is a possible Intent Redirect due to a confused deputy. This could lead to local escalation of privilege that allows actions performed as the System UI, with no additional execution privileges needed. User interaction is needed for...
Samsung SMR 安全漏洞
Samsung SMR is a system patch package from Samsung South Korea. It provides patches for Samsung mobile applications. A security vulnerability exists in versions prior to Samsung SMR Oct-2021 Release 1, which originates from an exception handling of multisimbarshowonqspanel in SystemUI, which allo...
CVE-2020-0114
In onCreateSliceProvider of KeyguardSliceProvider.java, there is a possible confused deputy due to a PendingIntent error. This could lead to local escalation of privilege that allows actions performed as the System UI, with no additional execution privileges needed. User interaction is not needed...
CVE-2018-9524
In functionality implemented in System UI, there are insufficient protections implemented around overlay windows. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0...
CVE-2017-13301
A denial of service vulnerability in the Android system system ui. Product: Android. Versions: 8.0. Android ID: A-66498711...
CVE-2017-0492
An elevation of privilege vulnerability in the System UI could enable a local malicious application to create a UI overlay covering the entire screen. This issue is rated as Moderate because it is a local bypass of user interaction requirements that would normally require either user initiation o...
CVE-2016-6708
An elevation of privilege in the System UI in Android 7.0 before 2016-11-01 could enable a local malicious user to bypass the security prompt of your work profile in Multi-Window mode. This issue is rated as High because it is a local bypass of user interaction requirements for any developer or...
Samsung Note Device Integer Overflow Vulnerability
The SamsungNote is a smartphone released by the South Korean company Samsung.KK is a reactivation locking module that runs on... An integer overflow vulnerability exists in SystemUI in KK version 4.4 and L5.0 and 5.1 on SamsungNote devices. An attacker can exploit this vulnerability to cause a...
CVE-2016-7160
A vulnerability on Samsung Mobile M6.0 devices exists because external access to SystemUI activities is not properly restricted, leading to a SystemUI crash and device restart, aka SVE-2016-6248...
The vulnerability of the Android operating system, which allows a hacker to bypass security measures and delete data
The vulnerability in the packages/SystemUI/src/com/android/systemui/recents/AlternateRecentsComponent.java file of the Setup Wizard component of the Android operating system is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to bypass security...