Lucene search
K

34 matches found

Cvelist
Cvelist
added 2022/07/13 6:21 p.m.21 views

CVE-2022-20218

In PermissionController, there is a possible way to get and retain permissions without user's consent due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product:...

7.9AI score0.00113EPSS
Exploits0References1
CVE
CVE
added 2022/07/13 6:21 p.m.171 views

CVE-2022-20218

CVE-2022-20218 affects Android 12/12L, with the PermissionController component vulnerable due to a logic error that can allow obtaining and retaining permissions without user consent. This yields local elevation of privilege and, per sources, requires user interaction to exploit. AOSP/Android Bul...

7.8CVSS7.6AI score0.00113EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/07/13 12:0 a.m.6 views

Google Android 安全漏洞

Google Android is a Linux-based operating system from Google, Inc. An elevation of privilege vulnerability exists in Google Android versions 12 and 12L. The vulnerability stems from a logic error in the PermissionController component code, and there is a possible way to gain and retain privileges...

7.8CVSS5.7AI score0.00113EPSS
Exploits0References4
CNVD
CNVD
added 2022/04/01 12:0 a.m.8 views

Google Android Information Disclosure Vulnerability (CNVD-2022-28925)

Google Android is a Linux-based open source operating system from Google, Inc. An information disclosure vulnerability exists in Google Android, which stems from the insecure use of PendingIntent in the PermissionController, which could bypass permissions. An attacker could use this vulnerability...

5.5CVSS2AI score0.00105EPSS
Exploits0References1
OSV
OSV
added 2022/03/30 4:15 p.m.1 views

CVE-2021-39757

In PermissionController, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-176094662...

5.5CVSS6.2AI score
Exploits0References1
NVD
NVD
added 2022/03/30 4:15 p.m.19 views

CVE-2021-39746

In PermissionController, there is a possible way to delete some local files due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID:...

7.8CVSS0.00107EPSS
Exploits0References1
NVD
NVD
added 2022/03/30 4:15 p.m.29 views

CVE-2021-39757

In PermissionController, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-176094662...

5.5CVSS0.00105EPSS
Exploits0References1
OSV
OSV
added 2022/03/30 4:15 p.m.5 views

CVE-2021-39746

In PermissionController, there is a possible way to delete some local files due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID:...

7.8CVSS5.9AI score0.00107EPSS
Exploits0References1
Prion
Prion
added 2022/03/30 4:15 p.m.17 views

Privilege escalation

In PermissionController, there is a possible way to delete some local files due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID:...

4.6CVSS7.8AI score0.00107EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/03/30 4:2 p.m.28 views

CVE-2021-39757

In PermissionController, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-176094662...

5.9AI score0.00105EPSS
Exploits0References1
CVE
CVE
added 2022/03/30 4:2 p.m.89 views

CVE-2021-39757

CVE-2021-39757 affects Android 12L with a permission bypass in the PermissionController caused by unsafe PendingIntent, enabling local information disclosure. Exploitation requires low privileges and no user interaction, with potential access to sensitive data on the device as described in multip...

5.5CVSS5.6AI score0.00105EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/03/30 4:2 p.m.19 views

CVE-2021-39746

In PermissionController, there is a possible way to delete some local files due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID:...

8.1AI score0.00107EPSS
Exploits0References1
CVE
CVE
added 2022/03/30 4:2 p.m.99 views

CVE-2021-39746

CVE-2021-39746 affects Android 12L Framework, specifically a vulnerability in PermissionController caused by an unsafe PendingIntent. This could lead to local escalation of privilege with user execution privileges needed and no user interaction required, per the CVE description. Red Hat and Andro...

7.8CVSS7.8AI score0.00107EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/03/30 12:0 a.m.3 views

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google, Inc. An information disclosure vulnerability exists in Google Android, which stems from the insecure use of PendingIntent in the PermissionController, which could bypass permissions. An attacker could use this vulnerability...

5.5CVSS5.7AI score0.00105EPSS
Exploits0References2
Rows per page
Query Builder