2 matches found
CVE-2020-0098
In navigateUpToLocked of ActivityStack.java, there is a possible permission bypass due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10...
CVE-2020-0098
CVE-2020-0098 affects Android framework (ActivityStack.java) and enables a local elevation of privilege due to a confused deputy in navigateUpToLocked. The issue allows a local attacker to bypass permissions without extra execution privileges, with no user interaction required. Affected Android v...