![]() This could lead to remote code execution with no additional execution privileges needed. In allocExcessBits of bitalloc.c, there is a possible out of bounds write due to an incorrect bounds check. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10 Android-11Android ID: A-150159669 Published: Septem12:15:12 PM -0400 This could lead to remote information disclosure in a highly constrained process with no additional execution privileges needed. In Parse_wave of eas_mdls.c, there is a possible out of bounds write due to an integer overflow. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-10Android ID: A-152944488 Published: Septem12:15:12 PM -0400 This could lead to local information disclosure of bug report data with System execution privileges needed. In RunInternal of dumpstate.cpp, there is a possible user consent bypass due to an uncaught exception. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11 Android-8.0Android ID: A-150160279 Published: Septem12:15:13 PM -0400 This could lead to remote information disclosure in the media extractor process with no additional execution privileges needed. In Parse_ins of eas_mdls.c, there is a possible out of bounds write due to a missing bounds check. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11 Android-8.0Android ID: A-150159906 Published: Septem12:15:13 PM -0400 This could lead to remote information disclosure in the media extractor with no additional execution privileges needed. In Parse_art of eas_mdls.c, there is a possible out of bounds write due to an incorrect bounds check. User interaction is needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.0 Android-8.1Android ID: A-150160041 Published: Septem12:15:13 PM -0400 In Parse_insh of eas_mdls.c, there is a possible out of bounds write due to an incorrect bounds check. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10 Android-11Android ID: A-155650356 Published: Septem12:15:13 PM -0400 This could lead to local escalation of privilege allowing an attacker to set Bluetooth discoverability with User execution privileges needed. In onCreate of RequestPermissionActivity.java, there is a possible tapjacking vector due to an insecure default value. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-10Android ID: A-156123285 Published: Septem12:15:13 PM -0400 This could lead to local escalation of privilege with User execution privileges needed. In createEmergencyLocationUserNotification of GnssVisibilitåontrol.java, there is a possible permissions bypass due to an empty mutable PendingIntent. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11Android ID: A-156959408 Published: Septem12:15:13 PM -0400 This could lead to local information disclosure with User execution privileges needed. In createSaveNotification of RecordingService.java, there is a possible permission bypass due to an unsafe PendingIntent. ![]() User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11Android ID: A-157598026 Published: Septem12:15:13 PM -0400 This could lead to local information disclosure with no additional execution privileges needed. ![]() In the app zygote SE Policy, there is a possible permissions bypass. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11Android ID: A-158570769 Published: Septem12:15:13 PM -0400 This could lead to local escalation of privilege with no additional execution privileges needed. In applyPolicy of PackageManagerService.java, there is possible arbitrary command execution as System due to an unenforced protected-broadcast. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11Android ID: A-150226608 Published: Septem12:15:13 PM -0400 In getLayerDebugInfo of SurfaceFlinger.cpp, there is a possible code execution due to a double free.
0 Comments
Leave a Reply. |