Lucene search
K

952 matches found

NVD
NVD
added 2020/11/10 1:15 p.m.20 views

CVE-2020-0449

In btmsecdisconnected of btmsec.cc, there is a possible memory corruption due to a use after free. This could lead to remote code execution in the Bluetooth server with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-9...

9.3CVSS8.9AI score0.01286EPSS
Exploits0References1
NVD
NVD
added 2020/11/10 1:15 p.m.23 views

CVE-2020-0442

In Message and toBundle of Notification.java, there is a possible UI slowdown or crash due to improper input validation. This could lead to remote denial of service if a malicious contact file is received, with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS7.5AI score0.01003EPSS
Exploits0References1
NVD
NVD
added 2020/11/10 1:15 p.m.16 views

CVE-2020-0451

In sbrDecoderAssignQmfChannels2SbrChannels of sbrdecoder.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:...

9.3CVSS9AI score0.0187EPSS
Exploits0References1
NVD
NVD
added 2020/11/10 1:15 p.m.17 views

CVE-2020-0439

In generatePackageInfo of PackageManagerService.java, there is a possible permissions bypass due to an incorrect permission check. This could lead to local escalation of privilege that allows instant apps access to permissions not allowed for instant apps, with no additional execution privileges...

7.8CVSS7.8AI score0.00212EPSS
Exploits0References1
Prion
Prion
added 2020/11/10 1:15 p.m.16 views

Integer overflow

In create of FileMap.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-8.0 Android-8...

4.6CVSS7.7AI score0.00248EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/11/10 1:15 p.m.12 views

Heap overflow

In sbrDecoderAssignQmfChannels2SbrChannels of sbrdecoder.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:...

9.3CVSS8.3AI score0.0187EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/11/10 1:15 p.m.11 views

Out-of-bounds

In sendvc of ressend.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-9...

2.1CVSS5.3AI score0.00158EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/11/10 1:15 p.m.14 views

Design/Logic Flaw

In CellBroadcastReceiver's intent handlers, there is a possible denial of service due to a missing permission check. This could lead to local denial of service of emergency alerts with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

2.1CVSS5.7AI score0.00143EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/11/10 1:15 p.m.13 views

Memory corruption

In btmsecdisconnected of btmsec.cc, there is a possible memory corruption due to a use after free. This could lead to remote code execution in the Bluetooth server with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-9...

9.3CVSS8.2AI score0.01286EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/11/10 1:15 p.m.17 views

Design/Logic Flaw

In updateNotification of BeamTransferManager.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9...

2.1CVSS5.4AI score0.0025EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/11/10 1:15 p.m.18 views

Design/Logic Flaw

In generatePackageInfo of PackageManagerService.java, there is a possible permissions bypass due to an incorrect permission check. This could lead to local escalation of privilege that allows instant apps access to permissions not allowed for instant apps, with no additional execution privileges...

4.6CVSS7.7AI score0.00212EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCve
added 2020/11/10 1:15 p.m.22 views

CVE-2020-0409

In create of FileMap.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-8.0 Android-8...

7.8CVSS7.3AI score0.00248EPSS
Exploits0References3
Prion
Prion
added 2020/11/10 1:15 p.m.14 views

Design/Logic Flaw

In LocaleList of LocaleList.java, there is a possible forced reboot due to an uncaught exception. This could lead to local denial of service requiring factory reset to restore with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-...

2.1CVSS5.7AI score0.00328EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/11/10 1:15 p.m.24 views

Integer overflow

In exifentrygetvalue of exif-entry.c, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution if a third party app used this library to process remote image data with no additional execution privileges needed. User interaction is not needed for...

7.5CVSS8.7AI score0.03189EPSS
Exploits0References4Affected Software2
Prion
Prion
added 2020/11/10 1:15 p.m.12 views

Information disclosure

In getPhoneAccountsForPackage of TelecomServiceImpl.java, there is a possible way to access a tracking identifier due to a missing permission check. This could lead to local information disclosure of the identifier, which could be used to track an account across devices, with no additional...

2.1CVSS5.5AI score0.00149EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/11/10 1:15 p.m.15 views

Design/Logic Flaw

In callCallbackForRequest of ConnectivityService.java, there is a possible permission bypass due to a missing permission check. This could lead to local information disclosure of the current SSID with User execution privileges needed. User interaction is not needed for exploitation.Product:...

2.1CVSS5.4AI score0.00231EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2020/11/10 1:15 p.m.15 views

Input validation

In Message and toBundle of Notification.java, there is a possible UI slowdown or crash due to improper input validation. This could lead to remote denial of service if a malicious contact file is received, with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS7.4AI score0.01003EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/11/10 1:15 p.m.12 views

Input validation

In Message and toBundle of Notification.java, there is a possible resource exhaustion due to improper input validation. This could lead to remote denial of service requiring a device reset to fix with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS7.3AI score0.01076EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/11/10 12:52 p.m.30 views

CVE-2020-0437

In CellBroadcastReceiver's intent handlers, there is a possible denial of service due to a missing permission check. This could lead to local denial of service of emergency alerts with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

5.6AI score0.00143EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/11/10 12:50 p.m.23 views

CVE-2020-0453

In updateNotification of BeamTransferManager.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9...

5.4AI score0.0025EPSS
Exploits0References1
Rows per page
Query Builder