Race condition in the Intel(R) Driver and Support Assistant before version 20.1.5 may allow an authenticated user to potentially enable denial of service via local access. Insecure inherited permissions in Intel(R) PROSet/Wireless WiFi products before version 21.70 on Windows 10 may allow an authenticated user to potentially enable escalation of privilege via local access. The list of affected products is provided in intel-sa-00334: Load value injection in some Intel(R) Processors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. ![]() User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-148180766 This could lead to local information disclosure of location data with User execution privileges needed. In updateUidProcState of AppOpsService.java, there is a possible permission bypass due to a logic error. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-147606347 This could lead to local escalation of privilege that allows actions performed as the System UI, with no additional execution privileges needed. In onCreateSliceProvider of KeyguardSliceProvider.java, there is a possible confused deputy due to a PendingIntent error. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-9Android ID: A-150944913 This could lead to local information disclosure with no additional execution privileges needed. In sendCaptureResult of Camera3OutputUtils.cpp, there is a possible out of bounds read due to a use after free. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-8.1 Android-9Android ID: A-140108616 ![]() This could lead to local escalation of privilege with no additional execution privileges needed. In postNotification of ServiceRecord.java, there is a possible bypass of foreground process restrictions due to an uncaught exception. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9Android ID: A-145669109 In startActivities of ActivityStartController.java, there is a possible escalation of privilege due to a confused deputy. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-147882143References: M-ALPS04356754 In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to insufficient input sanitization and missing SELinux restrictions. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-145988638References: Upstream kernel In binder_transaction of binder.c, there is a possible out of bounds write due to an incorrect bounds check. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-143894715 This could lead to remote code execution over Bluetooth with no additional execution privileges needed. In reassemble_and_dispatch of packet_, there is possible out of bounds write due to an incorrect bounds calculation. User action is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-128674520 ![]() This could lead to a local escalation of privilege with no additional execution privileges needed. It is possible for a malicious application to construct a TYPE_TOAST window manually and make that window clickable. ![]() Product: Android Versions: Android-8.0, Android-8.1, Android-9, and Android-10 Android ID: A-140055304 User interaction is not needed for exploitation. In getProcessRecordLocked of ActivityManagerService.java isolated apps are not handled correctly.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |