Lucene search
K

8 matches found

NVD
NVD
added 2019/06/19 9:15 p.m.37 views

CVE-2019-2023

In ServiceManager::add function in the hardware service manager, there is an insecure permissions check based on the PID of the caller. This could allow an app to add or replace a HAL service with its own service, gaining code execution in a privileged process.Product: AndroidVersions: Android-8....

7.8CVSS7.5AI score0.00489EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/06/19 8:5 p.m.29 views

CVE-2019-2023

In ServiceManager::add function in the hardware service manager, there is an insecure permissions check based on the PID of the caller. This could allow an app to add or replace a HAL service with its own service, gaining code execution in a privileged process.Product: AndroidVersions: Android-8....

7.6AI score0.00489EPSS
Exploits1References1
CVE
CVE
added 2019/06/19 8:5 p.m.131 views

CVE-2019-2023

CVE-2019-2023 affects Android's hardware ServiceManager::add, where an insecure PID-based permissions check can let an app add or replace a HAL service, enabling code execution in a privileged process. Supported in multiple feeds (NVD, Red Hat, PRION, CIRCL) with exploited/attack data referenced ...

7.8CVSS7.5AI score0.00489EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2018/01/12 11:29 p.m.18 views

Privilege escalation

In the ServiceManager::add function in the hardware service manager, there is an insecure permissions check based on the PID of the caller which could allow an application or service to replace a HAL service with its own service. This could lead to a local elevation of privilege enabling code...

7.2CVSS7.6AI score0.00753EPSS
Exploits2References4Affected Software1
CVE
CVE
added 2018/01/12 11:0 p.m.51 views

CVE-2017-13209

This CVE (CVE-2017-13209) affects Android 8.0–8.1 and is due to an insecure permissions check in ServiceManager::add of the hardware service manager. The check based on the caller’s PID could allow an application or service to replace a HAL service with its own, enabling local elevation of privil...

7.8CVSS7.5AI score0.00753EPSS
Exploits2References4Affected Software1
exploitpack
exploitpack
added 2018/01/11 12:0 a.m.23 views

Android - Hardware Service Manager Arbitrary Service Replacement due to getpidcon

Android - Hardware Service Manager Arbitrary Service Replacement due to getpidcon This bug is similar to Jann Horn's issue https://bugs.chromium.org/p/project-zero/issues/detail?id=851 -- credit should go to him. The hardware service manager allows the registration of HAL services. These services...

0.2AI score
Exploits0
0day.today
0day.today
added 2018/01/11 12:0 a.m.53 views

Android - Hardware Service Manager Arbitrary Service Replacement due to getpidcon Exploit

Exploit for Android platform in category dos / poc This bug is similar to Jann Horn's issue https://bugs.chromium.org/p/project-zero/issues/detail?id=851 -- credit should go to him. The hardware service manager allows the registration of HAL services. These services are used by the vendor domain...

7.2CVSS0.1AI score0.00753EPSS
Exploits2
Exploit DB
Exploit DB
added 2018/01/11 12:0 a.m.33 views

Android - Hardware Service Manager Arbitrary Service Replacement due to getpidcon

This bug is similar to Jann Horn's issue https://bugs.chromium.org/p/project-zero/issues/detail?id=851 -- credit should go to him. The hardware service manager allows the registration of HAL services. These services are used by the vendor domain and other core processes, including systemserver,...

7AI score
Exploits0
Rows per page
Query Builder