In OPPO Usercenter Credit SDK, there's a possible escalation of privilege due to loose permission check, This could lead to application internal information leak w/o user...
9.1CVSS
9AI Score
0.0004EPSS
9.8CVSS
9.7AI Score
0.002EPSS
9.8CVSS
9.7AI Score
0.002EPSS
There is a command injection problem in the old version of the mobile phone backup...
9.8CVSS
9.6AI Score
0.001EPSS
A command injection vulerability found in quick game engine allows arbitrary remote code in quick app. Allows remote attacke0rs to gain arbitrary code execution in quick game...
9.8CVSS
10AI Score
0.002EPSS
In ACE2 ColorOS11, the attacker can obtain the foreground package name through permission promotion, resulting in user information...
7.5CVSS
7.2AI Score
0.002EPSS
ColorOS pregrant dangerous permissions to apps which are listed in a whitelist xml named default-grant-permissions.But some apps in whitelist is not installed, attacker can disguise app with the same package name to obtain dangerous...
7.8CVSS
7.4AI Score
0.001EPSS
In Oppo's battery application, the third-party SDK provides the function of loading a third-party Provider, which can be...
7.8CVSS
7.5AI Score
0.0004EPSS
OPPO Android Phone with MTK chipset and Android 8.1/9/10/11 versions have an information leak vulnerability. The “adb shell getprop ro.vendor.aee.enforcing” or “adb shell getprop ro.vendor.aee.enforcing” return...
5.5CVSS
5.4AI Score
0.0004EPSS
In /SM8250_Q_Master/android/vendor/oppo_charger/oppo/charger_ic/oppo_mp2650.c, the function mp2650_data_log_write in mp2650_data_log_write does not check the parameter len which causes a...
5.5CVSS
5.5AI Score
0.001EPSS
In /SM8250_Q_Master/android/vendor/oppo_charger/oppo/charger_ic/oppo_da9313.c, failure to check the parameter buf in the function proc_work_mode_write in proc_work_mode_write causes a...
5.5CVSS
5.4AI Score
0.001EPSS
In /SM8250_Q_Master/android/vendor/oppo_charger/oppo/oppo_vooc.c, the function proc_fastchg_fw_update_write in proc_fastchg_fw_update_write does not check the parameter len, resulting in a...
5.5CVSS
5.5AI Score
0.001EPSS
In functions charging_limit_current_write and charging_limit_time_write in /SM8250_Q_Master/android/vendor/oppo_charger/oppo/oppo_charger.c have not checked the parameters, which causes a...
5.5CVSS
5.5AI Score
0.001EPSS
Dynamic loading of services in the backup and restore SDK leads to elevated privileges, affected product is com.coloros.codebook...
9.8CVSS
9.3AI Score
0.002EPSS
QualityProtect has a vulnerability to execute arbitrary system commands, affected product is com.oppo.qualityprotect...
9.8CVSS
9.5AI Score
0.002EPSS
OvoiceManager has system permission to write vulnerability reports for arbitrary files, affected product is com.oppo.ovoicemanager...
9.8CVSS
9.4AI Score
0.002EPSS
In ColorOS (oppo mobile phone operating system, based on AOSP frameworks/native code position/services/surfaceflinger surfaceflinger.CPP), RGB is defined on the stack but uninitialized, so when the screenShot function to RGB value assignment, will not initialize the value is returned to the...
7.5CVSS
7.5AI Score
0.002EPSS
The Oppo F5 Android device with a build fingerprint of OPPO/CPH1723/CPH1723:7.1.1/N6F26Q/1513597833:user/release-keys contains a pre-installed platform app with a package name of com.dropboxchmod (versionCode=1, versionName=1.0) that contains an exported service named...
7.8CVSS
7.6AI Score
0.001EPSS