4 matches found
CVE-2021-0478
In updateDrawable of StatusBarIconView.java, there is a possible permission bypass due to an uncaught exception. This could lead to local escalation of privilege by running foreground services without notifying the user, with User execution privileges needed. User interaction is not needed for...
Google Android elevation of privilege vulnerability (CNVD-2019-37955)
Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An elevation of privilege vulnerability exists in Google Android 8.0, 8.1, and 9. The vulnerability stems from a package installation local user interaction...
Google Android Media framework remote code execution vulnerability (CNVD-2018-18769)
Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA. Media framework is one of the frameworks used for multimedia development. A remote code execution vulnerability exists in the Media framework in Android versions 8.0 and 8.1. A...
Android Framework (crypto framework) information disclosure vulnerability
Android on Google Pixel and Nexus is a Linux-based open source operating system for Google Pixel and Nexus smartphones developed by Google and the Open Handset Alliance OHA.Framework crypto-framework is one of the cryptographic frameworks. Framework crypto framework is one of the cryptographic...