3 matches found
Design/Logic Flaw
In ion, there is a possible use after free due to improper update of reference count. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06399915; Issue ID: ALPS06399915...
CVE-2022-20110
CVE-2022-20110 affects the MediaTek ion component, where a race-condition triggers a use-after-free, enabling local elevation of privilege with no user interaction. Patch ALPS06399915/ALPS06399901 is referenced; Android bulletin materials indicate related SPL updates. Exploit code/details are not...
CVE-2022-20109
In ion, there is a possible use after free due to improper update of reference count. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06399915; Issue ID: ALPS06399915...