672 matches found
PT-2025-36048
Name of the Vulnerable Software and Affected Versions: ControlsSettingsDialogManager affected versions not specified Description: The software may be susceptible to a tapjacking/overlay attack due to a potential overlay of the ControlsSettingsDialog in the maybeShowDialog function of...
PT-2025-36054
Name of the Vulnerable Software and Affected Versions: affected versions not specified Description: A tapjacking/overlay attack may allow an attacker to overlay biometrics, potentially leading to local escalation of privilege without requiring additional execution privileges or user interaction...
PT-2025-36047
Name of the Vulnerable Software and Affected Versions: affected versions not specified Description: The software contains a possible privilege escalation issue stemming from a tapjacking/overlay attack. Exploitation can lead to local privilege escalation without requiring additional execution...
CVE-2025-22419
In multiple locations, there is a possible way to mislead the user into enabling malicious phone calls forwarding due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation...
CVE-2025-22419
In multiple locations, there is a possible way to mislead the user into enabling malicious phone calls forwarding due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation...
CVE-2025-22417
In finishTransition of Transition.java, there is a possible way to bypass touch filtering restrictions due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...
CVE-2025-22417
In finishTransition of Transition.java, there is a possible way to bypass touch filtering restrictions due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...
CVE-2025-22419
In multiple locations, there is a possible way to mislead the user into enabling malicious phone calls forwarding due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation...
CVE-2025-22419
Android framework vulnerability (CVE-2025-22419) where a tapjacking/overlay attack could mislead a user into enabling malicious phone call forwarding, enabling local privilege escalation with user interaction required. Public details point to patches in the 2025-04-01/04-05 security levels; remed...
CVE-2025-22419
In multiple locations, there is a possible way to mislead the user into enabling malicious phone calls forwarding due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation...
CVE-2025-22419
In multiple locations, there is a possible way to mislead the user into enabling malicious phone calls forwarding due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation...
CVE-2025-22417
In finishTransition of Transition.java, there is a possible way to bypass touch filtering restrictions due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...
CVE-2025-22417
In finishTransition of Transition.java, there is a possible way to bypass touch filtering restrictions due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...
CVE-2025-22417
In finishTransition of Transition.java, there is a possible way to bypass touch filtering restrictions due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...
CVE-2025-22417
CVE-2025-22417 affects Android where finishTransition in Transition.java can bypass touch filtering via a tapjacking/overlay attack, enabling local elevation of privilege with no extra execution privileges required. Exploitation requires user interaction. Documents consistently describe this as a...
PT-2025-35622
Name of the Vulnerable Software and Affected Versions: Transition.java affected versions not specified Description: A tapjacking/overlay attack can bypass touch filtering restrictions in the finishTransition function of Transition.java. This could lead to local escalation of privilege without...
PT-2025-35624
Name of the Vulnerable Software and Affected Versions: affected versions not specified Description: A tapjacking/overlay attack could mislead a user into enabling malicious phone call forwarding, potentially leading to local escalation of privilege. User interaction is required for exploitation...
ASB-A-404256832
In maybeShowDialog of ControlsSettingsDialogManager.kt, there is a possible overlay of the ControlsSettingsDialog due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
ASB-A-408215749
In multiple locations, there is a possible privilege escalation due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
ASB-A-384727394
In multiple locations, there is a possible way to overlay biometrics due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...