Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:18 p.m.5 views

CVE-2022-20112

In getAvailabilityStatus of PrivateDnsPreferenceController.java, there is a possible way for a guest user to change private DNS settings due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS7.7AI score0.00094EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/05/02 12:0 a.m.3 views

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google, Inc. An elevation of privilege vulnerability exists in Google Android, which originates in PrivateDnsPreferenceController.java's getAvailabilityStatus, a guest user can bypass privileges to change private DNS settings, and ...

5.5CVSS5.8AI score0.00094EPSS
Exploits0References4
Cvelist
Cvelist
added 2020/02/13 2:22 p.m.18 views

CVE-2020-0028

In notifyNetworkTested and related functions of NetworkMonitor.java, there is a possible bypass of private DNS settings. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:...

6.5AI score0.02683EPSS
Exploits0References10
CVE
CVE
added 2020/02/13 2:22 p.m.63 views

CVE-2020-0028

CVE-2020-0028 affects Android 9 and is tied to the NetworkMonitor.java area, where a bypass of private DNS settings could allow remote information disclosure. Root cause: the notifyNetworkTested path and related functions enable DNS setting bypass, with exploitation requiring user interaction (UI...

7.1CVSS6.2AI score0.02683EPSS
Exploits0References10Affected Software1
Rows per page
Query Builder