Описание
In multiple locations, there is a possible way to alter the primary user's face unlock settings due to a confused deputy. This could lead to physical escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:google:android:16.0:*:*:*:*:*:*:*
EPSS
Процентиль: 1%
0.00009
Низкий
6.6 Medium
CVSS3
Дефекты
CWE-610
CWE-441
Связанные уязвимости
CVSS3: 6.6
github
около 2 месяцев назад
In multiple locations, there is a possible way to alter the primary user's face unlock settings due to a confused deputy. This could lead to physical escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
CVSS3: 6.6
fstec
6 месяцев назад
Уязвимость компонента Settings операционных систем Android, позволяющая нарушителю повысить свои привилегии
EPSS
Процентиль: 1%
0.00009
Низкий
6.6 Medium
CVSS3
Дефекты
CWE-610
CWE-441