Lucene search
K

39 matches found

CVE
CVE
added 2023/03/24 12:0 a.m.87 views

CVE-2023-21068

The CVE-2023-21068 entry concerns Android kernel with a local privilege escalation via booting with a hidden debug policy due to a missing user warning. Affected component is the Android kernel; description states that after preparing the device and hiding the warning, a user can hand the device ...

7.8CVSS7.7AI score0.0009EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/03/01 12:0 a.m.4 views

PUB-A-243433344

In TBD of TBD, there is a possible way to boot with a hidden debug policy due to a missing warning to the user. This could lead to local escalation of privilege after preparing the device, hiding the warning, and passing the phone to a new user, with no additional execution privileges needed. Use...

7.8CVSS7.1AI score0.0009EPSS
Exploits0References1
OSV
OSV
added 2022/06/01 12:0 a.m.8 views

PUB-A-193443223

In TBD of TBD, there is a possible way to boot with a hidden debug policy due to a missing warning to the user. This could lead to local escalation of privilege after preparing the device, hiding the warning, and passing the phone to a new user, with no additional execution privileges needed. Use...

7.8CVSS7.8AI score0.00119EPSS
Exploits0References1
NVD
NVD
added 2021/12/15 7:15 p.m.22 views

CVE-2021-39653

In TBD of TBD, there is a possible way to boot with a hidden debug policy due to a missing warning to the user. This could lead to local escalation of privilege after preparing the device, hiding the warning, and passing the phone to a new user, with no additional execution privileges needed. Use...

7.8CVSS0.00119EPSS
Exploits0References1
Prion
Prion
added 2021/12/15 7:15 p.m.17 views

Privilege escalation

In TBD of TBD, there is a possible way to boot with a hidden debug policy due to a missing warning to the user. This could lead to local escalation of privilege after preparing the device, hiding the warning, and passing the phone to a new user, with no additional execution privileges needed. Use...

4.6CVSS7.6AI score0.00119EPSS
Exploits0References1
CVE
CVE
added 2021/12/15 6:6 p.m.88 views

CVE-2021-39653

CVE-2021-39653 describes a local elevation of privilege in the Android boot path, enabling boot with a hidden debug policy due to a missing user warning. The vulnerability is associated with the Android kernel/Bootloader surface (as reflected in Pixel bulletin categorization), and iled by the des...

7.8CVSS7.7AI score0.00119EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/12/15 6:6 p.m.26 views

CVE-2021-39653

In TBD of TBD, there is a possible way to boot with a hidden debug policy due to a missing warning to the user. This could lead to local escalation of privilege after preparing the device, hiding the warning, and passing the phone to a new user, with no additional execution privileges needed. Use...

8AI score0.00119EPSS
Exploits0References1
NVD
NVD
added 2020/04/16 11:15 a.m.23 views

CVE-2019-14116

Privilege escalation by using an altered debug policy image can occur as the XPU protecting the debug policy regions are disabled during the crash dump boot flow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,...

7.8CVSS8AI score0.00184EPSS
Exploits0References1
Prion
Prion
added 2020/04/16 11:15 a.m.23 views

Privilege escalation

Privilege escalation by using an altered debug policy image can occur as the XPU protecting the debug policy regions are disabled during the crash dump boot flow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,...

7.2CVSS8AI score0.00184EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/04/16 10:46 a.m.29 views

CVE-2019-14116

Privilege escalation by using an altered debug policy image can occur as the XPU protecting the debug policy regions are disabled during the crash dump boot flow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,...

8AI score0.00184EPSS
Exploits0References1
CVE
CVE
added 2020/04/16 10:46 a.m.62 views

CVE-2019-14116

Privilege escalation via altered debug policy image in Snapdragon Auto/Compute/Connectivity/IoT/Industrial IoT/Mobile/Voice & Music/Wired Infrastructure and Networking on IPQ6018. Root cause: XPU protections for debug policy regions are disabled during crash-dump boot flow. Affected components: d...

7.8CVSS7.9AI score0.00184EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2019/07/22 2:15 p.m.27 views

CVE-2018-13927

Debug policy with invalid signature can be loaded when the debug policy functionality is disabled by using the parallel image loading in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT,...

7.8CVSS7.8AI score0.00182EPSS
Exploits0References1
Prion
Prion
added 2019/07/22 2:15 p.m.17 views

Code injection

Debug policy with invalid signature can be loaded when the debug policy functionality is disabled by using the parallel image loading in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT,...

7.2CVSS7.8AI score0.00182EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/07/22 1:47 p.m.32 views

CVE-2018-13927

Debug policy with invalid signature can be loaded when the debug policy functionality is disabled by using the parallel image loading in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT,...

7.8AI score0.00182EPSS
Exploits0References1
CVE
CVE
added 2019/07/22 1:47 p.m.67 views

CVE-2018-13927

CVE-2018-13927 concerns Qualcomm Snapdragon platforms (multiple Snapdragon Auto/Compute/Connectivity/IOT/Mobile/related SDMs) where the debug policy with invalid signature could be loaded even when debug policy is disabled by using parallel image loading. The issue is described consistently acros...

7.8CVSS7.7AI score0.00182EPSS
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2018/07/19 12:0 a.m.7 views

The vulnerability of the Qualcomm Trusted Execution Environment component in the Android operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of Qualcomm Trusted Execution Environment in the Android operating system is related to access control deficiencies. Exploiting this vulnerability could allow a malicious actor to bypass debug policy restrictions and compromise the confidentiality, integrity, and accessibility o...

10CVSS5.5AI score0.01262EPSS
Exploits0References3
NVD
NVD
added 2018/04/11 3:29 p.m.21 views

CVE-2017-18071

In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MSM8909W, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 650/52, debug policy can potentially be bypassed...

10CVSS8.6AI score0.01262EPSS
Exploits0References2
CVE
CVE
added 2018/04/11 3:0 p.m.52 views

CVE-2017-18071

CVE-2017-18071 affects Android on Qualcomm Snapdragon/Mobile platforms (including MDM9206, MDM9607, MSM8909W, SD 210/212/205, SD 425/430/450/625/650/52) and is described as allowing a potential bypass of the debug policy prior to the 2018-04-05 patch level. The vulnerability is documented in the ...

10CVSS9AI score0.01262EPSS
Exploits0References2Affected Software1
android
android
added 2018/04/01 12:0 a.m.28 views

CVE-2017-18071

In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MSM8909W, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 650/52, debug policy can potentially be bypassed...

10CVSS2.5AI score0.01262EPSS
Exploits0References2
Rows per page
Query Builder