2 matches found
CVE-2020-0179
In doSendObjectInfo of MtpServer.cpp, there is a possible path traversal attack due to insufficient input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is required for exploitation.Product: AndroidVersions:...
CVE-2020-0179
CVE-2020-0179 concerns a path traversal vulnerability in Android’s MtpServer.cpp (doSendObjectInfo) caused by insufficient input validation. The issue can enable local privilege escalation with no extra privileges required; exploitation requires user interaction. Affected product: Android 10. The...