| Max CVSS | 10.0 | Min CVSS | 1.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-0003 | 3.7 |
In onCreate of InstallStart.java, there is a possible package validation bypass due to a time-of-check time-of-use vulnerability. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is nee
|
14-10-2022 - 02:39 | 08-01-2020 - 19:15 | |
| CVE-2020-0009 | 2.1 |
In calc_vm_may_flags of ashmem.c, there is a possible arbitrary write to shared memory due to a permissions bypass. This could lead to local escalation of privilege by corrupting memory shared between processes, with no additional execution privilege
|
14-10-2022 - 02:33 | 08-01-2020 - 16:15 | |
| CVE-2020-0007 | 2.1 |
In flattenString8 of Sensor.cpp, there is a possible information disclosure of heap memory due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for e
|
01-01-2022 - 20:02 | 08-01-2020 - 19:15 | |
| CVE-2020-0006 | 4.3 |
In rw_i93_send_cmd_write_single_block of rw_i93.cc, there is a possible information disclosure of heap memory due to uninitialized data. This could lead to remote information disclosure in the NFC server with no additional execution privileges needed
|
01-01-2022 - 20:02 | 08-01-2020 - 19:15 | |
| CVE-2020-0008 | 1.9 |
In LowEnergyClient::MtuChangedCallback of low_energy_client.cc, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not ne
|
01-01-2022 - 20:02 | 08-01-2020 - 19:15 | |
| CVE-2020-0002 | 9.3 |
In ih264d_init_decoder of ih264d_api.c, there is a possible out of bounds write due to a use after free. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation Product: And
|
01-01-2022 - 20:01 | 08-01-2020 - 19:15 | |
| CVE-2020-0004 | 4.9 |
In generateCrop of WallpaperManagerService.java, there is a possible sysui crash due to image exceeding maximum texture size. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed fo
|
01-01-2022 - 20:01 | 08-01-2020 - 19:15 | |
| CVE-2020-0001 | 7.2 |
In getProcessRecordLocked of ActivityManagerService.java isolated apps are not handled correctly. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Produc
|
21-07-2021 - 11:39 | 08-01-2020 - 19:15 | |
| CVE-2019-2208 | 7.8 |
In PromiseBuiltinsAssembler::NewPromiseCapability of builtins-promise.cc, there is a possible out of bounds read in v8 JIT code due to a bug in code generation. This could lead to remote information disclosure with no additional execution privileges
|
24-08-2020 - 17:37 | 13-11-2019 - 18:15 | |
| CVE-2019-2218 | 7.2 |
In createSessionInternal of PackageInstallerService.java, there is a possible improper permission grant due to a missing permission check. This could lead to local escalation of privilege by installing malicious packages with User execution privilege
|
24-08-2020 - 17:37 | 06-12-2019 - 23:15 | |
| CVE-2019-2204 | 10.0 |
In FindSharedFunctionInfo of objects.cc, there is a possible out of bounds read due to a mistake in AST traversal. This could lead to remote code execution in the pacprocessor with no additional execution privileges needed. User interaction is not ne
|
08-01-2020 - 19:15 | 13-11-2019 - 18:15 |