Lucene search
+L

10 matches found

redhatcve
redhatcve
added 2025/12/12 8:15 p.m.5 views

CVE-2025-36889

In onCreateTasks of CameraActivity.java, there is a possible permission bypass due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.6AI score0.00064EPSS
Exploits0References1
nvd
nvd
added 2025/12/11 8:15 p.m.6 views

CVE-2025-36889

In onCreateTasks of CameraActivity.java, there is a possible permission bypass due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS0.00064EPSS
Exploits0References1
cvelist
cvelist
added 2025/12/11 7:35 p.m.24 views

CVE-2025-36889

In onCreateTasks of CameraActivity.java, there is a possible permission bypass due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00064EPSS
Exploits0References1
cve
cve
added 2025/12/11 7:35 p.m.23 views

CVE-2025-36889

CVE-2025-36889 is a local information-disclosure vulnerability affecting Google Pixel devices in the Camera2 path. The issue arises in onCreateTasks of CameraActivity.java where a permission bypass due to a confused deputy could allow information disclosure without requiring additional execution ...

5.5CVSS5.2AI score0.00064EPSS
Exploits0References1Affected Software1
vulnrichment
vulnrichment
added 2025/12/11 7:35 p.m.3 views

CVE-2025-36889

In onCreateTasks of CameraActivity.java, there is a possible permission bypass due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.2AI score0.00064EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/12/11 12:0 a.m.7 views

PT-2025-50697

In onCreateTasks of CameraActivity.java, there is a possible permission bypass due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.6AI score0.00064EPSS
Exploits0References3
osv
osv
added 2025/12/01 12:0 a.m.5 views

PUB-A-369100626

In onCreateTasks of CameraActivity.java, there is a possible permission bypass due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.5AI score0.00064EPSS
Exploits0References1
osv
osv
added 2024/02/16 8:15 p.m.4 views

CVE-2024-0017

In shouldUseNoOpLocation of CameraActivity.java, there is a possible confused deputy due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation...

5.5CVSS5.9AI score0.00105EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2024/02/16 12:0 a.m.4 views

PT-2024-15294 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: The issue is related to a possible confused deputy due to a permissions bypass in the shouldUseNoOpLocation function of CameraActivity.java. This could lead to local information disclosure...

5.5CVSS6.2AI score0.00105EPSS
Exploits0References9
ptsecurity
ptsecurity
added 2023/09/10 12:0 a.m.5 views

PT-2023-27231 · Google · Android

Name of the Vulnerable Software and Affected Versions: MyCrops HiGrade "THC Testing & Cannabi" application version 1.0.337 Description: An issue was discovered in the MyCrops HiGrade "THC Testing & Cannabi" application for Android, where a remote attacker can start the camera feed via the...

5.3CVSS5AI score0.00492EPSS
Exploits0References6
Rows per page
Query Builder