Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

14 matches found

EUVD
EUVDadded 2026/03/02 6:42 p.m.3 views

EUVD-2025-208223

In onStart of CompanionDeviceManagerService.java, there is a possible confused deputy due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

6.1AI score0.00003EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/03/02 12:0 a.m.2 views

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. A security vulnerability exists in Google Android, which originates from a logic error in the onStart function of CompanionDeviceManagerService.java, which can be exploited by an attacker to cause a local elevation of...

7.8CVSS5.8AI score0.00003EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-43698

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.00032EPSS
Exploits0References1
NVD
NVDadded 2024/07/09 9:15 p.m.12 views

CVE-2024-31318

In CompanionDeviceManagerService.java, there is a possible way to pair a companion device without user acceptance due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS0.00045EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/07/09 8:9 p.m.11 views

CVE-2024-31318

In CompanionDeviceManagerService.java, there is a possible way to pair a companion device without user acceptance due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.1AI score0.00045EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/07/09 8:9 p.m.19 views

CVE-2024-31318

In CompanionDeviceManagerService.java, there is a possible way to pair a companion device without user acceptance due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00045EPSS
Exploits0References2
OSV
OSVadded 2024/07/01 12:0 a.m.26 views

ASB-A-329230490

In setSkipPrompt of AssociationRequest.java , there is a possible way to establish a companion device association without any confirmation due to CDM. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.8AI score0.00681EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2024/06/03 12:0 a.m.2 views

PT-2024-23966 · Unknown · Companiondevicemanagerservice

Name of the Vulnerable Software and Affected Versions: CompanionDeviceManagerService affected versions not specified Description: The issue is related to a missing permission check in CompanionDeviceManagerService.java, allowing a companion device to be paired without user acceptance. This could...

7.8CVSS6.7AI score0.00045EPSS
Exploits0References5
CNVD
CNVDadded 2024/05/11 12:0 a.m.6 views

Google Android Information Disclosure Vulnerability (CNVD-2024-41862)

Google Android is a Linux-based open source operating system from Google. Google Android has an information disclosure vulnerability that stems from improper input validation in multiple methods of the CompanionDeviceManagerService.java file, which can be exploited by an attacker to launch anothe...

5.5CVSS6.2AI score0.00029EPSS
Exploits0References1
OSV
OSVadded 2024/04/01 12:0 a.m.30 views

ASB-A-298635078

In multiple functions of CompanionDeviceManagerService.java, there is a possible launch NotificationAccessConfirmationActivity of another user profile due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction...

5.5CVSS5.2AI score0.00029EPSS
Exploits0References2
Cvelist
Cvelistadded 2021/01/11 9:47 p.m.19 views

CVE-2021-0319

In checkCallerIsSystemOr of CompanionDeviceManagerService.java, there is a possible way to get a nearby Bluetooth device's MAC address without appropriate permissions due to a permissions bypass. This could lead to local escalation of privilege that grants access to nearby MAC addresses, with Use...

7.5AI score0.00012EPSS
Exploits0References1
Prion
Prionadded 2020/07/17 9:15 p.m.11 views

Design/Logic Flaw

In onCommand of CompanionDeviceManagerService.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege allowing background data usage or launching from the background, with no additional execution privileges needed. User...

7.2CVSS7.7AI score0.0001EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2020/07/17 8:6 p.m.11 views

CVE-2020-0227

In onCommand of CompanionDeviceManagerService.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege allowing background data usage or launching from the background, with no additional execution privileges needed. User...

8AI score0.0001EPSS
Exploits0References1
OSV
OSVadded 2020/07/01 12:0 a.m.118 views

ASB-A-129476618

In onCommand of CompanionDeviceManagerService.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege allowing background data usage or launching from the background, with no additional execution privileges needed. User...

7.8CVSS7.8AI score0.0001EPSS
Exploits0References7
Rows per page
Query Builder