Lucene search
+L

4 matches found

ncsc
ncsc
added 2023/12/05 12:0 a.m.12 views

Vulnerabilities fixed in Google Android and Samsung Mobile

Google has fixed vulnerabilities in Android. A malicious person can exploit the vulnerabilities to launch attacks that can lead to the following categories of damage: Denial-of-Service DoS. Remote code execution Administrator/Root rights Remote code execution User rights Access to sensitive data...

9.8CVSS9.2AI score0.08423EPSS
Exploits9
vulnrichment
vulnrichment
added 2023/12/04 10:40 p.m.3 views

CVE-2023-40076

In createPendingIntent of CredentialManagerUi.java, there is a possible way to access credentials from other users due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.4AI score0.02281EPSS
Exploits0References2
cve
cve
added 2023/12/04 10:40 p.m.137 views

CVE-2023-40076

The CVE-2023-40076 issue concerns Android’s CredentialManagerUi.java: in createPendingIntent, a permissions bypass could allow access to credentials from other users. This represents a local elevation of privilege, with exploitation possible without additional execution privileges or user interac...

5.5CVSS5.7AI score0.02281EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2023/12/04 10:40 p.m.17 views

CVE-2023-40076

In createPendingIntent of CredentialManagerUi.java, there is a possible way to access credentials from other users due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

6AI score0.02281EPSS
Exploits0References2
Rows per page
Query Builder