Search CVE reports
41 – 50 of 608 results
CVE-2022-20480
Medium priorityIn NotificationChannel of NotificationChannel.java, there is a possible failure to persist permissions settings due to resource exhaustion. This could lead to local escalation of privilege with no additional execution privileges...
1 affected package
android-platform-frameworks-base
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
android-platform-frameworks-base | Ignored | Ignored | Ignored | Ignored | Ignored |
CVE-2022-20479
Medium priorityIn NotificationChannel of NotificationChannel.java, there is a possible failure to persist permissions settings due to resource exhaustion. This could lead to local escalation of privilege with no additional execution privileges...
1 affected package
android-platform-frameworks-base
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
android-platform-frameworks-base | Ignored | Ignored | Ignored | Ignored | Ignored |
CVE-2022-20478
Medium priorityIn NotificationChannel of NotificationChannel.java, there is a possible failure to persist permissions settings due to resource exhaustion. This could lead to local escalation of privilege with no additional execution privileges...
1 affected package
android-platform-frameworks-base
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
android-platform-frameworks-base | Ignored | Ignored | Ignored | Ignored | Ignored |
CVE-2022-20476
Medium priorityIn setEnabledSetting of PackageManager.java, there is a possible way to get the device into an infinite reboot loop due to resource exhaustion. This could lead to local denial of service with no additional execution privileges...
1 affected package
android-framework-23
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
android-framework-23 | Ignored | Ignored | Ignored | Ignored | Ignored |
CVE-2022-20474
Medium priorityIn readLazyValue of Parcel.java, there is a possible loading of arbitrary code into the System Settings app due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed....
1 affected package
android-platform-frameworks-base
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
android-platform-frameworks-base | Ignored | Ignored | Ignored | Ignored | Ignored |
CVE-2022-20470
Medium priorityIn bindRemoteViewsService of AppWidgetServiceImpl.java, there is a possible way to bypass background activity launch due to improper input validation. This could lead to local escalation of privilege with no additional execution...
2 affected packages
android-framework-23, android-platform-frameworks-base
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
android-framework-23 | Ignored | Ignored | Ignored | Ignored | Ignored |
android-platform-frameworks-base | Ignored | Ignored | Ignored | Ignored | Ignored |
CVE-2022-20240
Medium priorityIn sOpAllowSystemRestrictionBypass of AppOpsManager.java, there is a possible leak of location information due to a missing permission check. This could lead to local escalation of privilege with System execution privileges...
2 affected packages
android-framework-23, android-platform-frameworks-base
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
android-framework-23 | Ignored | Ignored | Ignored | Ignored | Ignored |
android-platform-frameworks-base | Ignored | Ignored | Ignored | Ignored | Ignored |
CVE-2022-20452
Medium priorityIn initializeFromParcelLocked of BaseBundle.java, there is a possible method arbitrary code execution due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User...
1 affected package
android-platform-frameworks-base
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
android-platform-frameworks-base | Ignored | Ignored | Ignored | Ignored | Ignored |
CVE-2022-20448
Medium priorityIn buzzBeepBlinkLocked of NotificationManagerService.java, there is a possible way to share data across users due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges...
1 affected package
android-framework-23
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
android-framework-23 | Ignored | Ignored | Ignored | Ignored | Not in release |
CVE-2022-20446
Medium priorityIn AlwaysOnHotwordDetector of AlwaysOnHotwordDetector.java, there is a possible way to access the microphone from the background due to a missing permission check. This could lead to local escalation of privilege with...
2 affected packages
android-framework-23, android-platform-frameworks-base
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
android-framework-23 | Ignored | Ignored | Ignored | Ignored | Ignored |
android-platform-frameworks-base | Ignored | Ignored | Ignored | Ignored | Ignored |