CVE-2018-9374

In installPackageLI of PackageManagerService.java, there is a possible permissions bypass. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation...

CVE-2021-1009

CVE-2021-1009 affects Android 12 and is described as a local information disclosure through the PackageManagerService.setApplicationCategoryHint, enabling an attacker to determine whether an app is installed without any query permissions. The vulnerability arises from a side-channel information d...

CVE-2021-1032

CVE-2021-1032 affects Android 12 and is tied to getMimeGroup in PackageManagerService.java. The issue enables a side-channel disclosure that can reveal whether an app is installed without any query permissions, constituting a local information disclosure. Exploitation requires no user interaction...

Code injection

services/core/java/com/android/server/pm/PackageManagerService.java in the framework APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 allows attackers to increase intent-filter priority via a crafted application, aka internal bug 27450489...