6 matches found
CVE-2023-40140
In androidviewInputDevicecreate of androidviewInputDevice.cpp, there is a possible way to execute arbitrary code due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-40140
In androidviewInputDevicecreate of androidviewInputDevice.cpp, there is a possible way to execute arbitrary code due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-40140
CVE-2023-40140: Android component android_view_InputDevice_create (android_view_InputDevice.cpp) has a use-after-free vulnerability that can lead to arbitrary code execution and local escalation of privilege. Impact is local, with no user interaction required. The Android Security Bulletin notes ...
CVE-2022-20554
In removeEventHubDevice of InputDevice.cpp, there is a possible OOB read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-245770596...
CVE-2022-20554
In removeEventHubDevice of InputDevice.cpp, there is a possible OOB read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-245770596...
PT-2022-14766 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: The issue is related to a possible out-of-bounds OOB read due to a use after free in the removeEventHubDevice function of InputDevice.cpp. This could lead to local escalation of privilege, requiring...