Page 60 of 620 results (0.013 seconds)

CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0

In isSeparateProfileChallengeAllowed of DevicePolicyManagerService.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege, with no additional permissions required. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. • https://source.android.com/security/bulletin/2019-06-01 • CWE-862: Missing Authorization •

CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0

In GetPermittedAccessibilityServicesForUser of DevicePolicyManagerService.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege, with no additional permissions required. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1. • https://source.android.com/security/bulletin/2019-06-01 • CWE-862: Missing Authorization •

CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0

In isPackageDeviceAdminOnAnyUser of PackageManagerService.java, there is a possible permissions bypass due to a missing permissions check. This could lead to local escalation of privilege, with no additional permissions required. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. • https://source.android.com/security/bulletin/2019-06-01 • CWE-862: Missing Authorization •

CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0

In wnm_parse_neighbor_report_elem of wnm_sta.c, there is a possible out-of-bounds read due to missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9 Android ID: A-122074159 En wnm_parse_neighbor_report_elem de wnm_sta.c, hay una posible lectura fuera de límites debido a la falta de verificación de límites. Esto podría conducir a la divulgación de información local sin necesidad de privilegios de ejecución adicionales. • https://source.android.com/security/bulletin/2019-05-01 • CWE-125: Out-of-bounds Read •

CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0

In VisitPointers of heap.cc, there is a possible out-of-bounds read due to type confusion. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.1 Android-9 Android ID: A-117556606 En VisitPointers de heap.cc, hay una posible lectura fuera de límites debido a la confusión de tipo. Esto podría conducir a la divulgación de información remota sin necesidad de privilegios de ejecución adicionales. • https://source.android.com/security/bulletin/2019-05-01 • CWE-125: Out-of-bounds Read CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •