8 matches found
EUVD-2021-6500
Malicious code in bioql PyPI...
Google Android Elevation of Privilege Vulnerability (CNVD-2022-43861)
Google Android is a Linux-based open source operating system from Google, Inc. An elevation of privilege vulnerability exists in Google Android, which stems from a vulnerability in ConnectedDevicesSliceProvider.java.java's createGeneralSlice, PendingIntent bypasses privileges and can be exploited...
Google Android Elevation of Privilege Vulnerability (CNVD-2022-43862)
Google Android is a Linux-based open source operating system from Google, Inc. An elevation of privilege vulnerability exists in Google Android, which originates in the ConnectedDevicesSliceProvider.java createBluetoothDeviceSlice, the PendingIntent bypasses privileges and can be exploited to cau...
CVE-2021-1000
In createBluetoothDeviceSlice of ConnectedDevicesSliceProvider.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
CVE-2021-1033
In createGeneralSlice of ConnectedDevicesSliceProvider.java.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
Code injection
In createBluetoothDeviceSlice of ConnectedDevicesSliceProvider.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
CVE-2021-1033
CVE-2021-1033 affects Android 12L and involves a local elevation-of-privilege in ConnectedDevicesSliceProvider.java.java (createGeneralSlice) due to an unsafe PendingIntent. Impact: local Privilege Escalation with HIGH/Partial/Partial likelihoods in CVSS3.1 terms, with no user interaction require...
CVE-2021-1000
In createBluetoothDeviceSlice of ConnectedDevicesSliceProvider.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...