CVE-2023-20942

In openMmapStream of AudioFlinger.cpp, there is a possible way to record audio without displaying the microphone privacy indicator due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

Code injection

In openMmapStream of AudioFlinger.cpp, there is a possible way to record audio without displaying the microphone privacy indicator due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

CVE-2023-20942

The CVE-2023-20942 issue affects Android’s AudioFlinger.cpp, specifically in openMmapStream, where a logic error can allow recording audio without showing the microphone privacy indicator. This vulnerability enables local privilege escalation with no extra execution privileges and requires no use...

CVE-2022-20551

CVE-2022-20551 affects Android, specifically AudioFlinger.cpp createTrack in Android 12–13. Root cause is a logic error that can allow recording audio without a privacy indicator, enabling local elevation of privilege with System privileges required and no user interaction. Documents consistently...

CVE-2022-20551

In createTrack of AudioFlinger.cpp, there is a possible way to record audio without a privacy indicator due to a logic error in the code. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product:...

CVE-2019-2008

CVE-2019-2008 affects Android’s Media framework, specifically the AudioFlinger.cpp createEffect path, where a race condition can cause a memory corruption leading to local elevation of privilege. Exploitation requires user interaction, and no extra privileges are needed. The issue impacts Android...