Privilege Defined With Unsafe Actions

Overview org.apache.cassandra:cassandra-all is a maven plugin for the Apache Cassandra Project. Which, develops a highly scalable second-generation distributed database, bringing together Dynamo's fully distributed design and Bigtable's ColumnFamily-based data model. Affected versions of this...

Privilege escalation

In createOrUpdate of Permission.java, there is a possible way to gain internal permissions due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

CVE-2021-0923

CVE-2021-0923 affects Google Android 12, described as an elevation of privilege in Framework: in Permission.java createOrUpdate there is a missing permission check that could allow a local attacker to gain internal permissions without additional execution privileges and without user interaction. ...

ASB-A-195338390

In createOrUpdate of Permission.java, there is a possible way to gain internal permissions due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2021-0317

CVE-2021-0317 is an Elevation of Privilege vulnerability in Android stemming from a logic error in createOrUpdate(...) of Permission.java that could allow local privilege escalation. Affected Android versions include 8.0, 8.1, 9, 10, and 11. The issue requires user interaction to exploit and is c...