Max CVSS | 7.5 | Min CVSS | 1.9 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2020-0198 | 5.0 |
In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product
|
14-10-2022 - 02:43 | 11-06-2020 - 15:15 | |
CVE-2020-0181 | 5.0 |
In exif_data_load_data_thumbnail of exif-data.c, there is a possible denial of service due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploita
|
14-10-2022 - 02:41 | 11-06-2020 - 15:15 | |
CVE-2020-0137 | 4.6 |
In setIPv6AddrGenMode of NetworkManagementService.java, there is a possible bypass of networking permissions due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User inte
|
12-07-2022 - 17:42 | 11-06-2020 - 15:15 | |
CVE-2020-0088 | 4.3 |
In parseTrackFragmentRun of MPEG4Extractor.cpp, there is possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploit
|
22-04-2022 - 19:03 | 15-03-2020 - 22:15 | |
CVE-2020-0201 | 7.5 |
In showSecurityFields of WifiConfigController.java there is a possible credential leak due to a confused deputy. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for expl
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0132 | 2.1 |
In BnAAudioService::onTransact of IAAudioService.cpp, there is a possible out of bounds read due to unsafe deserialization. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0223 | 7.5 |
This is an unbounded write into kernel global memory, via a user-controlled buffer size.Product: AndroidVersions: Android kernelAndroid ID: A-135130450
|
21-07-2021 - 11:39 | 16-06-2020 - 14:15 | |
CVE-2020-0126 | 6.9 |
In multiple functions in DrmPlugin.cpp, there is a possible use after free due to a race condition. This could lead to local code execution with System execution privileges required. User interaction is not needed for exploitation.Product: AndroidVer
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0203 | 4.6 |
In freeIsolatedUidLocked of ProcessList.java, there is a possible UID reuse due to improper cleanup. This could lead to local escalation of privilege between constrained processes with no additional execution privileges needed. User interaction is no
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0178 | 2.1 |
In getAllConfigFlags of SettingsProvider.cpp, there is a possible illegal read due to a missing permission check. This could lead to local information disclosure of config flags with no additional execution privileges needed. User interaction is not
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0167 | 4.3 |
In load of ResourceTypes.cpp, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: Andr
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0169 | 4.3 |
In RTTTL_Event of eas_rtttl.c, there is possible resource exhaustion due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: Andro
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0140 | 5.0 |
In rw_i93_sm_detect_ndef of rw_i93.c, there is a possible information disclosure due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploi
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0174 | 4.3 |
In Parse_ptbl of eas_mdls.c, there is possible resource exhaustion due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: Android
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0195 | 4.3 |
In ihevcd_iquant_itrans_recon_ctb of ihevcd_iquant_itrans_recon_ctb.c and related functions, there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privilege
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0177 | 2.1 |
In connect() of PanService.java, there is a possible permissions bypass. This could lead to local escalation of privilege to change network connection settings with no additional execution privileges needed. User interaction is not needed for exploit
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0218 | 4.4 |
In loadSoundModel and related functions of SoundTriggerHwService.cpp, there is possible out of bounds write due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0175 | 4.3 |
In XMF_ReadNode of eas_xmf.c, there is possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: And
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0173 | 4.3 |
In Parse_lins of eas_mdls.c, there is possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: Andr
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0171 | 4.3 |
In Parse_lart of eas_mdls.c, there is possible resource exhaustion due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: Android
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0216 | 4.4 |
In phNciNfc_RecvMfResp of phNxpExtns_MifareStd.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for ex
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0160 | 6.8 |
In setSyncSampleParams of SampleTable.cpp, there is possible resource exhaustion due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Pr
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0199 | 1.9 |
In TimeCheck::TimeCheckThread::threadLoop of TimeCheck.cpp, there is a possible use-after-free due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploi
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0194 | 6.8 |
In ihevcd_parse_slice_header of ihevcd_parse_slice_header.c, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for e
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0179 | 6.8 |
In doSendObjectInfo of MtpServer.cpp, there is a possible path traversal attack due to insufficient input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is required for ex
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0170 | 4.3 |
In IMY_Event of eas_imelody.c, there is possible resource exhaustion due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: Andro
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0172 | 4.3 |
In Parse_art of eas_mdls.c, there is possible resource exhaustion due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidV
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0142 | 5.0 |
In rw_i93_sm_format of rw_i93.c, there is a possible information disclosure due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitatio
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0136 | 4.6 |
In multiple locations of Parcel.cpp, there is a possible out-of-bounds write due to an integer overflow. This could lead to local escalation of privilege in the system server with no additional execution privileges needed. User interaction is not nee
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0233 | 7.2 |
In main of main.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersion
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0192 | 4.3 |
In ih264d_decode_slice_thread of ih264d_thread_parse_decode.c, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0183 | 4.4 |
In handleMessage of BluetoothManagerService, there is an incomplete reset. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0141 | 2.1 |
In OutputBuffersArray::realloc of CCodecBuffers.cpp, there is a possible heap disclosure due to a race condition. This could lead to remote information disclosure with System execution privileges needed. User interaction is needed for exploitation.Pr
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0188 | 4.6 |
In onCreatePermissionRequest of SettingsSliceProvider.java, there is a possible permissions bypass due to a PendingIntent error. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed fo
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0134 | 2.1 |
In BnDrm::onTransact of IDrm.cpp, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Pr
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0207 | 4.3 |
In next_marker of jdmarker.c, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Produc
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0166 | 4.6 |
In multiple functions of URI.java, there is a possible escalation of privilege due to missing validation in the parceling of URI information. This could lead to a local escalation of privilege with no additional execution privileges needed. User inte
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0135 | 2.1 |
In dump of RollbackManagerServiceImpl.java, there is a possible backup metadata exposure due to a missing permission check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for ex
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0235 | 7.5 |
In crus_sp_shared_ioctl we first copy 4 bytes from userdata into "size" variable, and then use that variable as the size parameter for "copy_from_user", ending up overwriting memory following "crus_sp_hdr". "crus_sp_hdr" is a static variable, of type
|
21-07-2021 - 11:39 | 16-06-2020 - 14:15 | |
CVE-2020-0219 | 4.6 |
In onCreate of SliceDeepLinkSpringBoard.java there is a possible insecure Intent. This could lead to local elevation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0212 | 4.3 |
In _onBufferDestroyed of InputBufferManager.cpp, there is a possible out of bounds read due to a use after free. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitat
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0190 | 6.8 |
In ideint_weave_blk of ideint_utils.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0176 | 5.0 |
In avdt_msg_prs_rej of avdt_msg.cc, there is a possible out-of-bounds read due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitat
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0139 | 2.1 |
In NDEF_MsgValidate of ndef_utils.c, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure if a malformed NFC tag is provided by the firmware. System execution privileges are needed and use
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0128 | 5.0 |
In addPacket of AMPEG4ElementaryAssembler, there is an out of bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges required. User interaction is not needed for exploitation.P
|
21-07-2021 - 11:39 | 11-06-2020 - 15:15 | |
CVE-2020-0182 | 6.4 |
In exif_entry_get_value of exif-entry.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploita
|
06-07-2020 - 16:01 | 11-06-2020 - 15:15 | |
CVE-2020-0234 | 4.6 |
In crus_afe_get_param of msm-cirrus-playback.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for
|
22-06-2020 - 19:44 | 16-06-2020 - 14:15 | |
CVE-2020-0232 | 7.5 |
Function abc_pcie_issue_dma_xfer_sync creates a transfer object, adds it to the session object then continues to work with it. A concurrent thread could retrieve created transfer object from the session object and delete it using abc_pcie_dma_user_xf
|
22-06-2020 - 19:41 | 16-06-2020 - 14:15 | |
CVE-2020-0133 | 4.4 |
In MockLocationAppPreferenceController.java, it is possible to mock the GPS location of the device due to a permissions bypass. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exp
|
17-06-2020 - 19:43 | 11-06-2020 - 15:15 | |
CVE-2020-0168 | 6.8 |
In impeg2_fmt_conv_yuv420p_to_yuv420sp_uv of impeg2_format_conv.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is nee
|
15-06-2020 - 17:57 | 11-06-2020 - 15:15 | |
CVE-2020-0127 | 4.3 |
In AudioStream::decode of AudioGroup.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure in the phone process with no additional execution privileges needed. User interaction is
|
15-06-2020 - 16:55 | 11-06-2020 - 15:15 | |
CVE-2020-0211 | 4.3 |
In SumCompoundHorizontalTaps of convolve_neon.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for ex
|
15-06-2020 - 16:50 | 11-06-2020 - 15:15 | |
CVE-2020-0131 | 6.8 |
In parseChunk of MPEG4Extractor.cpp, there is a possible out of bounds write due to incompletely initialized data. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Pr
|
15-06-2020 - 16:43 | 11-06-2020 - 15:15 | |
CVE-2020-0205 | 4.3 |
In the DaalaBitReader constructor of entropy_decoder.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure in the media server with no additional execution privileges needed. User i
|
15-06-2020 - 16:15 | 11-06-2020 - 15:15 | |
CVE-2020-0184 | 4.3 |
In ihevcd_ref_list() of ihevcd_ref_list.c, there is a possible infinite loop due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Produc
|
15-06-2020 - 15:54 | 11-06-2020 - 15:15 | |
CVE-2020-0204 | 5.1 |
In InstallPackage of package.cpp, there is a possible bypass of a signature check due to a Time of Check/Time of Use condition. This could lead to local escalation of privilege by allowing a bypass of the initial zip file signature check for an OS up
|
15-06-2020 - 15:44 | 11-06-2020 - 15:15 | |
CVE-2020-0196 | 3.3 |
In RegisterNotificationResponse::GetEvent of register_notification_packet.cc, there is a possible abort due to improper input validation. This could lead to remote denial of service of the Bluetooth service, over Bluetooth, with no additional executi
|
15-06-2020 - 15:37 | 11-06-2020 - 15:15 | |
CVE-2020-0189 | 4.3 |
In ihevcd_decode() of ihevcd_decode.c, there is possible resource exhaustion due to an infinite loop. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: And
|
15-06-2020 - 15:37 | 11-06-2020 - 15:15 | |
CVE-2020-0186 | 4.6 |
In hal_fd_init of hal_fd.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product:
|
15-06-2020 - 15:35 | 11-06-2020 - 15:15 | |
CVE-2020-0200 | 4.3 |
In ReadLittleEndian of raw_bit_reader.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure in the media server with no additional execution privileges needed. User interaction is n
|
15-06-2020 - 15:18 | 11-06-2020 - 15:15 | |
CVE-2020-0206 | 2.1 |
In the settings app, there is a possible app crash due to improper input validation. This could lead to local denial of service of the Settings app with User execution privileges needed. User interaction is not needed for exploitation.Product: Androi
|
15-06-2020 - 14:31 | 11-06-2020 - 15:15 | |
CVE-2020-0138 | 6.8 |
In get_element_attr_rsp of btif_rc.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution if bluetoothtbd were used, which it isn't in typical Android platforms, with no additional executio
|
15-06-2020 - 12:56 | 11-06-2020 - 15:15 | |
CVE-2020-0124 | 4.6 |
In markBootComplete of InstalldNativeService.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for expl
|
12-06-2020 - 21:11 | 11-06-2020 - 15:15 | |
CVE-2020-0193 | 4.3 |
In ihevc_intra_pred_chroma_mode_3_to_9_av8 of ihevc_intra_pred_chroma_mode_3_to_9.s, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed
|
12-06-2020 - 19:24 | 11-06-2020 - 15:15 | |
CVE-2020-0191 | 4.3 |
In ih264d_update_default_index_list() of ih264d_dpb_mgr.c, there is a possible out of bounds read due to a logic error. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for ex
|
12-06-2020 - 19:24 | 11-06-2020 - 15:15 | |
CVE-2020-0180 | 4.3 |
In GetOpusHeaderBuffers() of OpusHeader.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploit
|
12-06-2020 - 19:23 | 11-06-2020 - 15:15 | |
CVE-2020-0143 | 2.1 |
In nfa_dm_ndef_find_next_handler of nfa_dm_ndef.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure of heap data via compromised device firmware with System execution privileges nee
|
12-06-2020 - 19:22 | 11-06-2020 - 15:15 | |
CVE-2020-0129 | 4.6 |
In SetData of btm_ble_multi_adv.cc, there is a possible out-of-bound write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitat
|
12-06-2020 - 19:15 | 11-06-2020 - 15:15 | |
CVE-2020-0144 | 2.1 |
In btm_proc_sp_req_evt of btm_sec.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User interaction is n
|
12-06-2020 - 19:11 | 11-06-2020 - 15:15 | |
CVE-2020-0150 | 4.6 |
In rw_t3t_message_set_block_list of rw_t3t.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for
|
12-06-2020 - 19:10 | 11-06-2020 - 15:15 | |
CVE-2020-0210 | 4.6 |
In removeSharedAccountAsUser of AccountManager.java, there is a possible permissions bypass to a confused deputy. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.
|
12-06-2020 - 19:09 | 11-06-2020 - 15:15 | |
CVE-2020-0149 | 2.1 |
In btu_hcif_mode_change_evt of btu_hcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User interactio
|
12-06-2020 - 19:05 | 11-06-2020 - 15:15 | |
CVE-2020-0148 | 2.1 |
In btu_hcif_pin_code_request_evt, btu_hcif_link_key_request_evt, and btu_hcif_link_key_notification_evt of btu_hcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromi
|
12-06-2020 - 19:04 | 11-06-2020 - 15:15 | |
CVE-2020-0146 | 2.1 |
In btu_hcif_hardware_error_evt of btu_hcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User interac
|
12-06-2020 - 18:58 | 11-06-2020 - 15:15 | |
CVE-2020-0145 | 2.1 |
In btm_simple_pair_complete of btm_sec.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User interaction
|
12-06-2020 - 18:54 | 11-06-2020 - 15:15 | |
CVE-2020-0214 | 5.0 |
In ce_t4t_process_select_file_cmd of ce_t4t.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed f
|
12-06-2020 - 18:53 | 11-06-2020 - 15:15 | |
CVE-2020-0209 | 4.6 |
In multiple functions of AccountManager.java, there is a possible permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVer
|
12-06-2020 - 18:53 | 11-06-2020 - 15:15 | |
CVE-2020-0157 | 4.0 |
In nfa_hci_conn_cback of nfa_hci_main.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure via compromised device firmware with System execution privileges needed. User interaction
|
12-06-2020 - 18:51 | 11-06-2020 - 15:15 | |
CVE-2020-0147 | 2.1 |
In btu_hcif_esco_connection_chg_evt of btu_hcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User in
|
12-06-2020 - 18:45 | 11-06-2020 - 15:15 | |
CVE-2020-0208 | 4.6 |
In multiple functions of AccountManager.java, there is a possible permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVer
|
12-06-2020 - 18:43 | 11-06-2020 - 15:15 | |
CVE-2020-0156 | 2.1 |
In NxpNfc::ioctl of NxpNfc.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: Andr
|
12-06-2020 - 18:16 | 11-06-2020 - 15:15 | |
CVE-2020-0154 | 2.1 |
In nci_proc_core_rsp of nci_hrcv.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User interaction is
|
12-06-2020 - 18:15 | 11-06-2020 - 15:15 | |
CVE-2020-0217 | 7.5 |
In RW_T4tPresenceCheck of rw_t4t.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Produ
|
12-06-2020 - 17:55 | 11-06-2020 - 15:15 | |
CVE-2020-0153 | 4.6 |
In phNxpNciHal_write_ext of phNxpNciHal_ext.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploi
|
12-06-2020 - 17:55 | 11-06-2020 - 15:15 | |
CVE-2020-0152 | 2.1 |
In avb_vbmeta_image_verify of avb_vbmeta_image.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploi
|
12-06-2020 - 17:52 | 11-06-2020 - 15:15 | |
CVE-2020-0151 | 2.1 |
In avb_vbmeta_image_verify of avb_vbmeta_image.c there is a possible out of bounds read due to a missing bounds check. This could lead to a local information disclosure with System execution privileges needed. User interaction is not needed for explo
|
12-06-2020 - 17:51 | 11-06-2020 - 15:15 | |
CVE-2020-0161 | 4.3 |
In parseChunk of MPEG4Extractor.cpp, there is possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Produ
|
12-06-2020 - 17:50 | 11-06-2020 - 15:15 | |
CVE-2020-0165 | 7.2 |
In phNxpNciHal_NfcDep_cmd_ext of phNxpNciHal_NfcDepSWPrio.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege via compromised device firmware with System execution privileges nee
|
12-06-2020 - 17:46 | 11-06-2020 - 15:15 | |
CVE-2020-0185 | 2.1 |
In avrc_pars_browsing_cmd of avrc_pars_tg.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exp
|
12-06-2020 - 16:44 | 11-06-2020 - 15:15 | |
CVE-2020-0187 | 2.1 |
In engineSetMode of BaseBlockCipher.java, there is a possible incorrect cryptographic algorithm chosen due to an incomplete comparison. This could lead to local information disclosure with no additional execution privileges needed. User interaction i
|
12-06-2020 - 16:42 | 11-06-2020 - 15:15 | |
CVE-2020-0197 | 2.1 |
In InitDataParser::parsePssh of InitDataParser.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed f
|
12-06-2020 - 16:39 | 11-06-2020 - 15:15 | |
CVE-2020-0155 | 4.6 |
In phNxpNciHal_send_ese_hal_cmd of phNxpNciHal_ext.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for e
|
11-06-2020 - 17:01 | 11-06-2020 - 15:15 | |
CVE-2020-0158 | 2.1 |
In nfc_ncif_proc_t3t_polling_ntf of nfc_ncif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploit
|
11-06-2020 - 16:56 | 11-06-2020 - 15:15 | |
CVE-2020-0159 | 3.5 |
In rw_mfc_writeBlock of rw_mfc.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation.Product:
|
11-06-2020 - 16:56 | 11-06-2020 - 15:15 | |
CVE-2020-0162 | 4.3 |
In parseSampleAuxiliaryInformationOffsets of MPEG4Extractor.cpp, there is possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is n
|
11-06-2020 - 16:36 | 11-06-2020 - 15:15 | |
CVE-2020-0163 | 4.3 |
In parseSampleAuxiliaryInformationSizes of MPEG4Extractor.cpp, there is possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is nee
|
11-06-2020 - 16:36 | 11-06-2020 - 15:15 | |
CVE-2020-0164 | 2.1 |
In phNxpNciHal_NfcDep_cmd_ext of phNxpNciHal_NfcDepSWPrio.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not neede
|
11-06-2020 - 16:36 | 11-06-2020 - 15:15 |