Google Android elevation of privilege vulnerability (CNVD-2025-23046)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability that is caused by background activity that may be initiated as a result of logic errors in multiple functions of LocationProviderManager.java. An attacker...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability that is caused by background activity that may be initiated as a result of logic errors in multiple functions of LocationProviderManager.java. An attacker...

Google Android elevation of privilege vulnerability (CNVD-2023-55370)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability that originates from a logic error in the diverOnFlushComplete code of the LocationProviderManager.java component, which can be exploited by an attacker to...

Design/Logic Flaw

In deliverOnFlushComplete of LocationProviderManager.java, there is a possible way to bypass background activity launch restrictions due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed fo...

CVE-2023-21088

The CVE affects Android (Android-12, Android-12L, Android-13) via a logic error in LocationProviderManager.java’s deliverOnFlushComplete, enabling bypass of background activity launch restrictions and leading to local elevation of privilege without extra privileges or user interaction. Affected c...