5 matches found
EUVD-2022-25406
Malicious code in bioql PyPI...
Google Android Information Disclosure Vulnerability (CNVD-2022-61745)
Google Android is a Linux-based open source operating system from Google, a U.S. company. Google Android is vulnerable to an information disclosure vulnerability caused by the presence of an obfuscated agent in the uploadFile function in FileUploadServiceImpl.java that leads to incorrect file...
Design/Logic Flaw
In uploadFile of FileUploadServiceImpl.java, there is a possible incorrect file access due to a confused deputy. This could lead to local information disclosure of private files with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersion...
CVE-2022-20146
CVE-2022-20146 affects Android via the information disclosure in the uploadFile function of FileUploadServiceImpl.java, caused by a confused deputy that can expose private files locally without extra privileges. Exploitation is local and does not require user interaction. Public details in the co...
PUB-A-211757677
In uploadFile of FileUploadServiceImpl.java, there is a possible incorrect file access due to a confused deputy. This could lead to local information disclosure of private files with no additional execution privileges needed. User interaction is not needed for exploitation...