Show filters
1,505 Total Results
Displaying 201-210 of 1,505
Sort by:
Attacker Value
Unknown

CVE-2024-0027

Disclosure Date: May 07, 2024 (last updated December 18, 2024)
In multiple functions of SnoozeHelper.java, there is a possible way to cause a boot loop due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-0026

Disclosure Date: May 07, 2024 (last updated December 18, 2024)
In multiple functions of SnoozeHelper.java, there is a possible persistent denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-0025

Disclosure Date: May 07, 2024 (last updated December 18, 2024)
In sendIntentSender of ActivityManagerService.java, there is a possible background activity launch due to a logic error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-0024

Disclosure Date: May 07, 2024 (last updated December 18, 2024)
In multiple methods of UserManagerService.java, there is a possible failure to persist or enforce user restrictions due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.
Attack Vector: LocalPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2024-0022

Disclosure Date: May 07, 2024 (last updated January 05, 2025)
In multiple functions of CompanionDeviceManagerService.java, there is a possible launch NotificationAccessConfirmationActivity of another user profile due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-20866

Disclosure Date: May 07, 2024 (last updated February 11, 2025)
Authentication bypass vulnerability in Setupwizard prior to SMR May-2024 Release 1 allows physical attackers to skip activation step.
Attack Vector: PhysicalPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-20865

Disclosure Date: May 07, 2024 (last updated February 11, 2025)
Authentication bypass in bootloader prior to SMR May-2024 Release 1 allows physical attackers to flash arbitrary images.
Attack Vector: PhysicalPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-20863

Disclosure Date: May 07, 2024 (last updated February 11, 2025)
Out of bounds write vulnerability in SNAP in HAL prior to SMR May-2024 Release 1 allows local privileged attackers to execute arbitrary code.
Attack Vector: LocalPrivileges: HighUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-20862

Disclosure Date: May 07, 2024 (last updated February 11, 2025)
Out-of-bounds write in SveService prior to SMR May-2024 Release 1 allows local privileged attackers to execute arbitrary code.
Attack Vector: LocalPrivileges: HighUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2024-20861

Disclosure Date: May 07, 2024 (last updated February 11, 2025)
Use after free vulnerability in SveService prior to SMR May-2024 Release 1 allows local privileged attackers to cause memory corruption.
Attack Vector: LocalPrivileges: HighUser Interaction: None
0
0
View More Topics  < Previous  Next >