Lucene search
K

30 matches found

OSV
OSV
added 2022/02/11 6:15 p.m.3 views

CVE-2021-39668

In onActivityViewReady of DetailDialog.kt, there is a possible Intent Redirect due to a confused deputy. This could lead to local escalation of privilege that allows actions performed as the System UI, with no additional execution privileges needed. User interaction is needed for...

7.8CVSS5.9AI score0.00132EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/10/06 12:0 a.m.5 views

Samsung SMR 安全漏洞

Samsung SMR is a system patch package from Samsung South Korea. It provides patches for Samsung mobile applications. A security vulnerability exists in versions prior to Samsung SMR Oct-2021 Release 1, which originates from an exception handling of multisimbarshowonqspanel in SystemUI, which allo...

4.9CVSS5.1AI score0.00101EPSS
Exploits0References1
OSV
OSV
added 2020/06/10 6:15 p.m.3 views

CVE-2020-0114

In onCreateSliceProvider of KeyguardSliceProvider.java, there is a possible confused deputy due to a PendingIntent error. This could lead to local escalation of privilege that allows actions performed as the System UI, with no additional execution privileges needed. User interaction is not needed...

7.8CVSS7.2AI score0.00336EPSS
Exploits0References1
OSV
OSV
added 2018/11/14 6:29 p.m.3 views

CVE-2018-9524

In functionality implemented in System UI, there are insufficient protections implemented around overlay windows. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0...

7.8CVSS5.9AI score0.0018EPSS
Exploits0References2
OSV
OSV
added 2018/04/04 4:29 p.m.2 views

CVE-2017-13301

A denial of service vulnerability in the Android system system ui. Product: Android. Versions: 8.0. Android ID: A-66498711...

7.5CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2017/03/08 1:59 a.m.4 views

CVE-2017-0492

An elevation of privilege vulnerability in the System UI could enable a local malicious application to create a UI overlay covering the entire screen. This issue is rated as Moderate because it is a local bypass of user interaction requirements that would normally require either user initiation o...

5.5CVSS7.3AI score0.00361EPSS
Exploits0References4
OSV
OSV
added 2016/11/25 4:59 p.m.4 views

CVE-2016-6708

An elevation of privilege in the System UI in Android 7.0 before 2016-11-01 could enable a local malicious user to bypass the security prompt of your work profile in Multi-Window mode. This issue is rated as High because it is a local bypass of user interaction requirements for any developer or...

5.5CVSS7.3AI score
Exploits0References2
CNVD
CNVD
added 2016/11/15 12:0 a.m.3 views

Samsung Note Device Integer Overflow Vulnerability

The SamsungNote is a smartphone released by the South Korean company Samsung.KK is a reactivation locking module that runs on... An integer overflow vulnerability exists in SystemUI in KK version 4.4 and L5.0 and 5.1 on SamsungNote devices. An attacker can exploit this vulnerability to cause a...

7.8CVSS6.9AI score0.01405EPSS
Exploits0References1
OSV
OSV
added 2016/11/03 10:59 a.m.4 views

CVE-2016-7160

A vulnerability on Samsung Mobile M6.0 devices exists because external access to SystemUI activities is not properly restricted, leading to a SystemUI crash and device restart, aka SVE-2016-6248...

7.5CVSS5.8AI score0.011EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2016/03/31 12:0 a.m.7 views

The vulnerability of the Android operating system, which allows a hacker to bypass security measures and delete data

The vulnerability in the packages/SystemUI/src/com/android/systemui/recents/AlternateRecentsComponent.java file of the Setup Wizard component of the Android operating system is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to bypass security...

6.6CVSS6.3AI score0.0018EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder