2 matches found
CVE-2020-0060
In query of SmsProvider.java and MmsSmsProvider.java, there is a possible permission bypass due to SQL injection. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID...
CVE-2020-0060
CVE-2020-0060 is documented as a SQL injection-based permission bypass in Android 10. The affected components are the SmsProvider.java and MmsSmsProvider.java query paths, enabling a local information disclosure with system-level privileges and no user interaction required for exploitation. The v...