2 matches found
CVE-2020-0401
In setInstallerPackageName of PackageManagerService.java, there is a missing permission check. This could lead to local escalation of privilege and granting spurious permissions with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersion...
CVE-2020-0401
CVE-2020-0401 involves a missing permission check in setInstallerPackageName within PackageManagerService.java, enabling local escalation of privilege and granting spurious permissions without extra execution privileges. Affected: Android 8.0–11. Impact per sources: local privilege escalation wit...