3774 matches found
CVE-2021-0654
Summary: CVE-2021-0654 affects Android Pixel launcher (CVE entry tied to Android kernel/TaskThumbnailView.java) with information disclosure from locked profiles due to a missing permission check in isRealSnapshot. Exploitation requires user interaction; local information disclosure is possible wi...
CVE-2021-0654
In isRealSnapshot of TaskThumbnailView.java, there is possible data exposure due to a missing permission check. This could lead to local information disclosure from locked profiles with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions...
Vulnerability of the __hidinput_change_resolution_multipliers function (hid-input.c) in the Android operating system’s kernel, allowing a hacker to escalate their privileges
The vulnerability of the hidinputchangeresolutionmultipliers function in the Android operating system’s kernel is related to writing data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability of the drm_syncobj_handle_to_fd function (drm_syncobj.c) in the Android operating system’s kernel allows a intruder to gain unauthorized access to protected information.
The vulnerability of the drmsyncobjhandletofd function in the Android operating system’s kernel is related to the disclosure of information. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...
CVE-2021-0605
In pfkeydump of afkey.c, there is a possible out-of-bounds read due to a missing bounds check. This could lead to local information disclosure in the kernel with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
CVE-2021-0606
In drmsyncobjhandletofd of drmsyncobj.c, there is a possible use after free due to incorrect refcounting. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
CVE-2021-0605
In pfkeydump of afkey.c, there is a possible out-of-bounds read due to a missing bounds check. This could lead to local information disclosure in the kernel with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
CVE-2021-0608
In handleAppLaunch of AppLaunchActivity.java, there is a possible arbitrary activity launch due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...
Out-of-bounds
In pfkeydump of afkey.c, there is a possible out-of-bounds read due to a missing bounds check. This could lead to local information disclosure in the kernel with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
CVE-2021-0605
In pfkeydump of afkey.c, there is a possible out-of-bounds read due to a missing bounds check. This could lead to local information disclosure in the kernel with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
CVE-2021-0606
In drmsyncobjhandletofd of drmsyncobj.c, there is a possible use after free due to incorrect refcounting. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
Design/Logic Flaw
In drmsyncobjhandletofd of drmsyncobj.c, there is a possible use after free due to incorrect refcounting. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
Out-of-bounds
In iaxxxcalci2sdiv of iaxxx-codec.c, there is a possible hardware port write with user controlled data due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
UBUNTU-CVE-2021-0606
In drmsyncobjhandletofd of drmsyncobj.c, there is a possible use after free due to incorrect refcounting. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
UBUNTU-CVE-2021-0605
In pfkeydump of afkey.c, there is a possible out-of-bounds read due to a missing bounds check. This could lead to local information disclosure in the kernel with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
CVE-2021-0608
The CVE-2021-0608 entry concerns Android’s AppLaunchActivity.handleAppLaunch, with a local elevation-of-privilege via a confused deputy. Affected component: Pixel Launcher on Pixel devices (and related Android kernel/framework context as per mappings). Root cause: improper handling in AppLaunchAc...
CVE-2021-0607
CVE-2021-0607 affects the Android kernel in the Knowles IAXXX adnc driver. The issue is in iaxxx_calc_i2s_div (iaxxx-codec.c) where a missing bounds check on a hardware port write allows an attacker with local access to supply data that leads to local elevation of privilege. Exploitation requires...
CVE-2021-0606
In drmsyncobjhandletofd of drmsyncobj.c, there is a possible use after free due to incorrect refcounting. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
CVE-2021-0605
In pfkeydump of afkey.c, there is a possible out-of-bounds read due to a missing bounds check. This could lead to local information disclosure in the kernel with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
DEBIAN-CVE-2021-0512
In hidinputchangeresolutionmultipliers of hid-input.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...