2 matches found
CVE-2019-2091
In GetPermittedAccessibilityServicesForUser of DevicePolicyManagerService.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege, with no additional permissions required. User interaction is not needed for exploitation...
CVE-2019-2091
CVE-2019-2091 affects the Android Framework, specifically GetPermittedAccessibilityServicesForUser in DevicePolicyManagerService.java. The issue is a permissions bypass due to a missing permission check, enabling local elevation of privilege without requiring extra permissions. Exploitation is de...