Lucene search
K

7 matches found

OSV
OSV
added 2020/05/14 9:15 p.m.5 views

CVE-2020-0105

In onKeyguardVisibilityChanged of keystoreservice.cpp, there is a missing permission check. This could lead to local escalation of privilege, allowing apps to use keyguard-bound keys when the screen is locked, with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS7.2AI score0.00138EPSS
Exploits0References1
Prion
Prion
added 2020/05/14 9:15 p.m.14 views

Hardcoded credentials

In onKeyguardVisibilityChanged of keystoreservice.cpp, there is a missing permission check. This could lead to local escalation of privilege, allowing apps to use keyguard-bound keys when the screen is locked, with no additional execution privileges needed. User interaction is not needed for...

4.6CVSS8AI score0.00138EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/05/14 8:8 p.m.55 views

CVE-2020-0105

CVE-2020-0105 affects Android 9 and 10. It stems from a missing permission check in onKeyguardVisibilityChanged within key_store_service.cpp, enabling local privilege escalation to use keyguard-bound keys when the screen is locked, without extra execution privileges. CVSS data (NVD) shows LOCAL a...

7.8CVSS7.5AI score0.00138EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2019/07/08 6:15 p.m.2 views

CVE-2019-2119

In multiple functions of keystoreservice.cpp, there is a possible Information Disclosure due to improper locking. This could lead to local information disclosure of protected data with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android...

5.5CVSS5.9AI score0.00115EPSS
Exploits0References1
NVD
NVD
added 2019/07/08 6:15 p.m.25 views

CVE-2019-2119

In multiple functions of keystoreservice.cpp, there is a possible Information Disclosure due to improper locking. This could lead to local information disclosure of protected data with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android...

5.5CVSS5AI score0.00115EPSS
Exploits0References1
Prion
Prion
added 2019/07/08 6:15 p.m.16 views

Information disclosure

In multiple functions of keystoreservice.cpp, there is a possible Information Disclosure due to improper locking. This could lead to local information disclosure of protected data with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android...

2.1CVSS5AI score0.00115EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/07/08 5:41 p.m.69 views

CVE-2019-2119

CVE-2019-2119 affects Android: multiple functions in key_store_service.cpp allow local information disclosure due to improper locking. Impact is disclosure of protected data with no extra privileges and no user interaction required. Affected versions (from discussed entries): Android 8.0, 8.1, an...

5.5CVSS5AI score0.00115EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder