EUVD-2023-25087

Malicious code in bioql PyPI...

EUVD-2022-33222

Malicious code in bioql PyPI...

CVE-2023-20919

In getStringsForPrefix of Settings.java, there is a possible prevention of package uninstallation due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

CVE-2022-28783

Improper validation of removing package name in Galaxy Themes prior to SMR May-2022 Release 1 allows attackers to uninstall arbitrary packages without permission. The patch adds proper validation logic for removing package name...

CVE-2023-20919

In getStringsForPrefix of Settings.java, there is a possible prevention of package uninstallation due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

CVE-2023-20919

In getStringsForPrefix of Settings.java, there is a possible prevention of package uninstallation due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

CVE-2023-20919

CVE-2023-20919 affects Android 13 (Settings.java: getStringsForPrefix). A logic error could prevent package uninstallation, enabling local elevation of privilege with no user interaction. CVSS v3.1: Local attacker, low privileges, no user interaction, high confidentiality/ integrity/ availability...

PT-2023-17709 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: A logic error in the code of Settings.java could prevent package uninstallation, potentially leading to local escalation of privilege without requiring additional execution privileges. User interaction...