VYPR

Android

by Google

CVEs (4,711)

  • CVE-2020-0419MedOct 14, 2020
    risk 0.36cvss 5.5epss 0.00

    In generateInfo of PackageInstallerSession.java, there is a possible leak of cross-profile URI data during app installation due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not…

  • CVE-2020-0415MedOct 14, 2020
    risk 0.36cvss 5.5epss 0.00

    In various locations in SystemUI, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure of contact data with User execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2020-0400MedOct 14, 2020
    risk 0.36cvss 5.5epss 0.00

    In showDataRoamingNotification of NotificationMgr.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2020-0398MedOct 14, 2020
    risk 0.36cvss 5.5epss 0.00

    In updateMwi of NotificationMgr.java, there is a possible permission bypass due to a PendingIntent error. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10…

  • CVE-2020-0246MedOct 14, 2020
    risk 0.36cvss 5.5epss 0.00

    In getCarrierPrivilegeStatus of UiccAccessRule.java, there is a missing permission check. This could lead to local information disclosure of EID data with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:…

  • CVE-2020-0365MedSep 18, 2020
    risk 0.36cvss 5.5epss 0.00

    In netd, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-137346580

  • CVE-2020-0331MedSep 18, 2020
    risk 0.36cvss 5.5epss 0.00

    In Settings, there is a possible permissions bypass. This could lead to local information disclosure of the device's IMEI with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-147309310

  • CVE-2020-0327MedSep 18, 2020
    risk 0.36cvss 5.5epss 0.00

    In core networking, there is a missing permission check. This could lead to local information disclosure of app network usage with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-129151407

  • CVE-2020-0316MedSep 18, 2020
    risk 0.36cvss 5.5epss 0.00

    In Telephony, there is a missing permission check. This could lead to local information disclosure of radio data with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-154934919

  • CVE-2020-0315MedSep 18, 2020
    risk 0.36cvss 5.5epss 0.00

    In Zen Mode, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-155642026

  • CVE-2020-0313MedSep 18, 2020
    risk 0.36cvss 5.5epss 0.00

    In NotificationManagerService, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android…

  • CVE-2020-0311MedSep 18, 2020
    risk 0.36cvss 5.5epss 0.00

    In InputManagerService, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID:…

  • CVE-2020-0310MedSep 18, 2020
    risk 0.36cvss 5.5epss 0.00

    In Settings, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-153356468

  • CVE-2020-0307MedSep 18, 2020
    risk 0.36cvss 5.5epss 0.00

    In Settings, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-151645867

  • CVE-2020-0304MedSep 18, 2020
    risk 0.36cvss 5.5epss 0.00

    In Settings, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-151645695

  • CVE-2020-0302MedSep 18, 2020
    risk 0.36cvss 5.5epss 0.00

    In Settings, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-151646375

  • CVE-2020-0295MedSep 18, 2020
    risk 0.36cvss 5.5epss 0.00

    In Telecom, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-155650969

  • CVE-2020-0294MedSep 18, 2020
    risk 0.36cvss 5.5epss 0.00

    In bindWallpaperComponentLocked of WallpaperManagerService.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2020-0284MedSep 18, 2020
    risk 0.36cvss 5.5epss 0.00

    In Telephony, there is a possible permission bypass due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID:…

  • CVE-2020-0276MedSep 18, 2020
    risk 0.36cvss 5.5epss 0.00

    In Telephony, there is a possible permission bypass due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID:…

Page 150 of 236