Google Android elevation of privilege vulnerability (CNVD-2024-05388)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability, which is caused by a privilege bypass in onCreate of ApnEditor.java. An attacker can exploit this vulnerability to gain elevated privileges...

CVE-2023-40125

In onCreate of ApnEditor.java, there is a possible way for a Guest user to change the APN due to a permission bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2023-40125

In onCreate of ApnEditor.java, there is a possible way for a Guest user to change the APN due to a permission bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2023-40125

The CVE-2023-40125 entry concerns Android: a vulnerability in ApnEditor.java that allows a Guest user to change the APN due to a permission bypass, enabling local elevation of privilege with no extra execution privileges or user interaction required. Affected component is the ApnEditor.java logic...

PT-2023-27279 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions prior to the fixed version Description: A permission bypass issue in the ApnEditor.java file allows a Guest user to change the APN, potentially leading to local escalation of privilege without requiring additional execution...