3 matches found
CVE-2018-9469
In multiple functions of ShortcutService.java, there is a possible creation of a spoofed shortcut due to a missing permission check. This could lead to local escalation of privilege in a privileged app with no additional execution privileges needed. User interaction is needed for exploitation...
CVE-2018-9469
creationtimestamp| type| source ---|---|--- 2024-11-20 16:54:36+00:00| seen| https://infosec.exchange/users/cve/statuses/113516326170568045 2024-11-20 18:45:57+00:00| seen| https://t.me/cvedetector/11632...
CVE-2018-9469
CVE-2018-9469 affects Android framework components where ShortcutService.java can create a spoofed shortcut due to a missing permission check. This could enable a local elevation of privilege in a privileged app, with exploitation requiring user interaction. Connected documents confirm the same ...