2 matches found
CVE-2020-0204
In InstallPackage of package.cpp, there is a possible bypass of a signature check due to a Time of Check/Time of Use condition. This could lead to local escalation of privilege by allowing a bypass of the initial zip file signature check for an OS update with no additional execution privileges...
CVE-2020-0204
CVE-2020-0204 affects Android 10 with a flaw in InstallPackage (package.cpp) that allows bypassing the initial signature check for an OS update due to a Time of Check/Time of Use condition. This can enable local escalation of privilege, with no additional execution privileges required beyond user...