EUVD-2021-2953

Malicious code in bioql PyPI...

EUVD-2023-25085

Malicious code in bioql PyPI...

PT-2023-17707 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-11 through Android-13 Description: A logic error in the code of ResolverActivity.java, specifically in the onTargetSelected method, can lead to sharing the wrong file. This issue can result in local escalation of...

CVE-2023-20917

CVE-2023-20917 affects Android 11–13 and is related to a logic error in ResolverActivity.java (onTargetSelected) that could allow a local escalation of privilege by sharing the wrong file. The exploit requires local access with no user interaction; impact is described as high (C/H/I/A). The provi...

ASB-A-242605257

In onTargetSelected of ResolverActivity.java, there is a possible way to share a wrong file due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2021-0954

In ResolverActivity, there is a possible user interaction bypass due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11Android ID:...

Design/Logic Flaw

In ResolverActivity, there is a possible user interaction bypass due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11Android ID:...

CVE-2021-0954

In ResolverActivity, there is a possible user interaction bypass due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11Android ID:...

CVE-2021-0954

CVE-2021-0954 is an Elevation of Privilege issue affecting Android’s ResolverActivity. A tapjacking/overlay attack could bypass user interaction and enable local privilege elevation with user interaction required. Affected versions include Android 10 and 11. Public references in the 2021-12 Andro...

ASB-A-143559931

In ResolverActivity, there is a possible user interaction bypass due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation...

CVE-2021-0334

In onTargetSelected of ResolverActivity.java, there is a possible settings bypass allowing an app to become the default handler for arbitrary domains. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product:...

ASB-A-163358811

In onTargetSelected of ResolverActivity.java, there is a possible settings bypass allowing an app to become the default handler for arbitrary domains. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation...