CVE-2025-0082

In multiple functions of StatusHint.java and TelecomServiceImpl.java, there is a possible way to reveal images across users due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an information disclosure vulnerability due to an obfuscated agent in multiple functions of StatusHint.java and TelecomServiceImpl.java. An attacker could exploit the vulnerability to disclose...

ASB-A-296915211

In registerPhoneAccount of TelecomServiceImpl.java, there is a possible way to reveal images from another user due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2020-0448

CVE-2020-0448 : In TelecomServiceImpl.getPhoneAccountsForPackage, a missing permission check can allow disclosure of a tracking identifier, enabling account tracking across devices with no extra privileges. Impact described as local information disclosure of the identifier (no integrity/DoS impac...