Lucene search
+L

3144 matches found

nvd
nvd
added 2026/03/02 7:16 p.m.8 views

CVE-2026-0011

In enableSystemPackageLPw of Settings.java, there is a possible way to prevent location access from working due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS0.00112EPSS
Exploits0References1
osv
osv
added 2026/03/02 7:16 p.m.10 views

CVE-2026-0011

In enableSystemPackageLPw of Settings.java, there is a possible way to prevent location access from working due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS5.9AI score0.00112EPSS
Exploits0References1
osv
osv
added 2026/03/02 7:16 p.m.7 views

CVE-2026-0012

In setHideSensitive of ExpandableNotificationRow.java, there is a possible contact name leak due due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

6.2CVSS6AI score0.001EPSS
Exploits0References1
nvd
nvd
added 2026/03/02 7:16 p.m.7 views

CVE-2025-48642

In jumptopayload of payload.rs, there is a possible information disclosure due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS0.00094EPSS
Exploits0References1
nvd
nvd
added 2026/03/02 7:16 p.m.13 views

CVE-2025-48654

In onStart of CompanionDeviceManagerService.java, there is a possible confused deputy due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS0.00098EPSS
Exploits0References1
osv
osv
added 2026/03/02 7:16 p.m.3 views

CVE-2025-48653

In loadDataAndPostValue of multiple files, there is a possible way to obscure permission usage due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS5.9AI score0.00098EPSS
Exploits0References1
osv
osv
added 2026/03/02 7:16 p.m.4 views

CVE-2025-48642

In jumptopayload of payload.rs, there is a possible information disclosure due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS6AI score0.00094EPSS
Exploits0References1
osv
osv
added 2026/03/02 7:16 p.m.4 views

CVE-2025-48654

In onStart of CompanionDeviceManagerService.java, there is a possible confused deputy due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS5.9AI score0.00098EPSS
Exploits0References1
nvd
nvd
added 2026/03/02 7:16 p.m.13 views

CVE-2025-48602

In exitKeyguardAndFinishSurfaceBehindRemoteAnimation of KeyguardViewMediator.java, there is a possible lockscreen bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitati...

8.4CVSS0.0011EPSS
Exploits0References1
osv
osv
added 2026/03/02 7:16 p.m.6 views

CVE-2025-48605

In multiple functions of KeyguardViewMediator.java, there is a possible lockscreen bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS5.9AI score0.0011EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/03/02 7:2 p.m.4 views

CVE-2024-31328

In broadcastIntentLockedTraced of BroadcastController.java, there is a possible way to launch arbitrary activities from the background on the paired companion phone due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed...

6.2AI score0.00115EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/03/02 7:2 p.m.7 views

CVE-2024-31328

In broadcastIntentLockedTraced of BroadcastController.java, there is a possible way to launch arbitrary activities from the background on the paired companion phone due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed...

8.8CVSS6.2AI score0.00115EPSS
Exploits0References3Affected Software1
euvd
euvd
added 2026/03/02 7:2 p.m.5 views

EUVD-2024-29224

In broadcastIntentLockedTraced of BroadcastController.java, there is a possible way to launch arbitrary activities from the background on the paired companion phone due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed...

8.8CVSS6.2AI score0.00115EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/03/02 6:42 p.m.3 views

CVE-2026-0038

In multiple functions of memprotect.c, there is a possible way to execute arbitrary code due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

6.4AI score0.00233EPSS
Exploits0References8
cve
cve
added 2026/03/02 6:42 p.m.26 views

CVE-2026-0038

CVE-2026-0038 describes a logic error in mem_protect.c across multiple functions that could allow arbitrary code execution, leading to local privilege escalation with no additional privileges and without user interaction. The available sources consistently reference mem_protect.c but do not provi...

8.4CVSS6.4AI score0.00233EPSS
Exploits0References8Affected Software1
cvelist
cvelist
added 2026/03/02 6:42 p.m.29 views

CVE-2026-0038

In multiple functions of memprotect.c, there is a possible way to execute arbitrary code due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00233EPSS
Exploits0References8
euvd
euvd
added 2026/03/02 6:42 p.m.6 views

EUVD-2026-9249

In multiple functions of ffa.c, there is a possible memory corruption due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS6.1AI score0.00153EPSS
Exploits0References2
cve
cve
added 2026/03/02 6:42 p.m.25 views

CVE-2026-0037

CVE-2026-0037 corresponds to a memory corruption issue in multiple functions of ffa.c, caused by a logic error. The CVE affects Google Android components and is described as enabling local escalation of privilege with no extra execution privileges and no user interaction required. The impact is n...

8.4CVSS6.1AI score0.00153EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2026/03/02 6:42 p.m.4 views

CVE-2026-0037

In multiple functions of ffa.c, there is a possible memory corruption due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

6.1AI score0.00153EPSS
Exploits0References2
euvd
euvd
added 2026/03/02 6:42 p.m.11 views

EUVD-2026-9248

In createRequest of MediaProvider.java, there is a possible way for an app to gain read/write access to non-existing files due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

8.4CVSS6.1AI score0.00103EPSS
Exploits0References1
Rows per page
Query Builder