exploitDog

GHSA-4754-5j9c-773m

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

In checkGrantUriPermissionLocked of ActivityManagerService.java, there is a possible permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-8.0 Android-8.1 Android-9.0 Android ID: A-111934948

In checkGrantUriPermissionLocked of ActivityManagerService.java, there is a possible permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-8.0 Android-8.1 Android-9.0 Android ID: A-111934948

Ссылки

EPSS

Процентиль: 6%

0.00025

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2018-9492

CVSS3: 7.8

nvd

больше 7 лет назад

In checkGrantUriPermissionLocked of ActivityManagerService.java, there is a possible permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-8.0 Android-8.1 Android-9.0 Android ID: A-111934948

BDU:2018-01162

CVSS3: 7.3

fstec

больше 7 лет назад

Уязвимость функции checkGrantUriPermissionLocked компонента Framework операционной системы Android, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 6%

0.00025

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-863