Google Android elevation of privilege vulnerability (CNVD-2026-14649)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability that could be initiated anywhere due to proxy obfuscation in executeRequest of ActivityStarter.java. An attacker can exploit the vulnerability to gain...

CVE-2025-48646

In executeRequest of ActivityStarter.java, there is a possible launch anywhere due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

CVE-2025-48646

In executeRequest of ActivityStarter.java, there is a possible launch anywhere due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability that could be initiated anywhere due to proxy obfuscation in executeRequest of ActivityStarter.java. An attacker can exploit the vulnerability to gain...

Google Android elevation of privilege vulnerability (CNVD-2023-82070)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability caused by a BAL bypass flaw in the startActivityInner of ActivityStarter.java. An attacker can exploit this vulnerability to gain elevated privileges...

CVE-2023-21269

In startActivityInner of ActivityStarter.java, there is a possible way to launch an activity into PiP mode from the background due to BAL bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability caused by a BAL bypass flaw in the startActivityInner of ActivityStarter.java. An attacker can exploit this vulnerability to gain elevated privileges...

ASB-A-271576718

In startActivityInner of ActivityStarter.java, there is a possible way to launch an activity into PiP mode from the background due to BAL bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

Google Android elevation of privilege vulnerability (CNVD-2019-37956)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An elevation of privilege vulnerability exists in Google Android 7.1.1, 7.1.2, 8.0, 8.1, and 9. The vulnerability stems from an incorrect permission check in...

CVE-2019-2173

In startActivityMayWait of ActivityStarter.java, there is a possible incorrect Activity launch due to an incorrect permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

CVE-2019-2173

CVE-2019-2173 involves the Android Framework component where in startActivityMayWait of ActivityStarter.java an incorrect permission check can launch an Activity improperly. This creates a local elevation of privilege risk on affected Android versions: 7.1.1, 7.1.2, 8.0, 8.1, and 9. The issue doe...