Количество 3
Количество 3
CVE-2024-0015
In convertToComponentName of DreamService.java, there is a possible way to launch arbitrary protected activities due to intent redirection. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.
GHSA-5wf4-qch9-828f
In convertToComponentName of DreamService.java, there is a possible way to launch arbitrary protected activities due to intent redirection. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.
BDU:2024-04515
Уязвимость функции ConvertToComponentName (DreamService.java) операционных систем Android, позволяющая нарушителю выполнить повысить свои привилегии или выполнить произвольный код
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-0015 In convertToComponentName of DreamService.java, there is a possible way to launch arbitrary protected activities due to intent redirection. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. | CVSS3: 7.8 | 3% Низкий | почти 2 года назад |
| GHSA-5wf4-qch9-828f In convertToComponentName of DreamService.java, there is a possible way to launch arbitrary protected activities due to intent redirection. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. | CVSS3: 7.8 | 3% Низкий | почти 2 года назад |
 | BDU:2024-04515 Уязвимость функции ConvertToComponentName (DreamService.java) операционных систем Android, позволяющая нарушителю выполнить повысить свои привилегии или выполнить произвольный код | CVSS3: 7.8 | 3% Низкий | почти 2 года назад |
Уязвимостей на страницу