Lucene search
+L

6 matches found

vulnrichment
vulnrichment
added 2026/03/02 6:42 p.m.4 views

CVE-2026-0021

In hasInteractAcrossUsersFullPermission of AppInfoBase.java, there is a possible cross-user permission bypass due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

6.1AI score0.00098EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/03/02 6:42 p.m.3 views

CVE-2026-0021

In hasInteractAcrossUsersFullPermission of AppInfoBase.java, there is a possible cross-user permission bypass due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS6.1AI score0.00098EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2026/03/02 6:42 p.m.31 views

CVE-2026-0021

In hasInteractAcrossUsersFullPermission of AppInfoBase.java, there is a possible cross-user permission bypass due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00098EPSS
Exploits0References1
euvd
euvd
added 2026/03/02 6:42 p.m.5 views

EUVD-2026-9236

In hasInteractAcrossUsersFullPermission of AppInfoBase.java, there is a possible cross-user permission bypass due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS6.1AI score0.00098EPSS
Exploits0References1
cve
cve
added 2026/03/02 6:42 p.m.25 views

CVE-2026-0021

CVE-2026-0021 describes a cross-user permission bypass in AppInfoBase.java (hasInteractAcrossUsersFullPermission). The flaw enables local escalation of privilege with no extra execution privileges required and no user interaction needed to exploit. Android ecosystem sources (NVD/NCSC/CIRCL/CVELIS...

8.4CVSS6.1AI score0.00098EPSS
Exploits0References1Affected Software1
osv
osv
added 2026/03/01 12:0 a.m.6 views

ASB-A-430047417

In hasInteractAcrossUsersFullPermission of AppInfoBase.java, there is a possible cross-user permission bypass due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS6.1AI score0.00098EPSS
Exploits0References2
Rows per page
Query Builder