6 matches found
Design/Logic Flaw
In visitUris of Notification.java, there is a possible bypass of user profile boundaries due to a missing permission check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-21244
In visitUris of Notification.java, there is a possible bypass of user profile boundaries due to a missing permission check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-21244
In visitUris of Notification.java, there is a possible bypass of user profile boundaries due to a missing permission check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation...
Google Android Security Vulnerability
Google Android is a Linux-based open source operating system from Google, Inc. Google Android suffers from a security vulnerability that stems from a lack of permission checking in visitUris of Notification.java, which could be exploited by an attacker to bypass user profile boundaries and cause...
PT-2023-18030 · Google +6 · Android +1
Name of the Vulnerable Software and Affected Versions: Notification.java affected versions not specified Description: The issue is related to a missing permission check in the visitUris method of Notification.java, which could allow a bypass of user profile boundaries. This might lead to local...
ASB-A-276729064
In visitUris of Notification.java, there is a possible bypass of user profile boundaries due to a missing permission check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation...