Google Android has an unspecified vulnerability (CNVD-2022-53377)

Google Android is a Linux-based open source operating system from Google, Inc. A security vulnerability exists in Google Android, which stems from a placeCall in TelecomManager.java, where the application can keep itself running through foreground service importance due to a privilege bypass. The...

CVE-2022-20114

CVE-2022-20114 affects Android (10–12, 12L) and is tied to a flaw in TelecomManager.java: the placeCall path can let an app keep itself running with foreground service importance, bypassing a permission and enabling local privilege escalation without extra execution privileges. The issue is class...

CVE-2019-2137

In the endCall function of TelecomManager.java, there is a possible Denial of Service due to a missing permission check. This could lead to local denial of access to Emergency Services with User execution privileges needed. User interaction is not needed for exploitation. Product: Android...

Design/Logic Flaw

In the endCall function of TelecomManager.java, there is a possible Denial of Service due to a missing permission check. This could lead to local denial of access to Emergency Services with User execution privileges needed. User interaction is not needed for exploitation. Product: Android...

CVE-2019-2137

CVE-2019-2137 affects Android 9 (Pie); the issue is in TelecomManager.java endCall() where a missing permission check allows a local DoS that can block access to Emergency Services with user execution privileges, and does not require user interaction. Exploitation details are not provided in the ...