Google Android vulnerabilities

CVE-2023-20960 [HIGH] CWE-20 CVE-2023-20960: In launchDeepLinkIntentToRight of SettingsHomepageActivity.java, there is a possible way to launch a In launchDeepLinkIntentToRight of SettingsHomepageActivity.java, there is a possible way to launch arbitrary activities due to improper input validation. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12L Android-13Android ID: A-25

CVE-2023-20931 [HIGH] CWE-787 CVE-2023-20931: In avdt_scb_hdl_write_req of avdt_scb_act.cc, there is a possible out of bounds write due to a heap In avdt_scb_hdl_write_req of avdt_scb_act.cc, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-24253599

CVE-2023-21030 [HIGH] CWE-415 CVE-2023-21030: In Confirmation of keystore_cli_v2.cpp, there is a possible way to corrupt memory due to a double fr In Confirmation of keystore_cli_v2.cpp, there is a possible way to corrupt memory due to a double free. This could lead to local escalation of privilege in an unprivileged process with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-226234140

CVE-2023-21024 [HIGH] CWE-693 CVE-2023-21024: In maybeFinish of FallbackHome.java, there is a possible delay of lockdown screen due to logic error In maybeFinish of FallbackHome.java, there is a possible delay of lockdown screen due to logic error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-246543238

CVE-2023-20966 [HIGH] CWE-787 CVE-2023-20966: In inflate of inflate.c, there is a possible out of bounds write due to a heap buffer overflow. This In inflate of inflate.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-242299736

CVE-2023-20953 [HIGH] CVE-2023-20953: In onPrimaryClipChanged of ClipboardListener.java, there is a possible way to bypass factory reset p In onPrimaryClipChanged of ClipboardListener.java, there is a possible way to bypass factory reset protection due to incorrect UI being shown prior to setup completion. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-2

CVE-2023-21017 [HIGH] CVE-2023-21017: In InstallStart of InstallStart.java, there is a possible way to change the installer package name d In InstallStart of InstallStart.java, there is a possible way to change the installer package name due to an improper input validation. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-236687884

CVE-2023-20955 [HIGH] CWE-862 CVE-2023-20955: In onPrepareOptionsMenu of AppInfoDashboardFragment.java, there is a possible way to bypass admin re In onPrepareOptionsMenu of AppInfoDashboardFragment.java, there is a possible way to bypass admin restrictions and uninstall applications for all users due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersi

CVE-2023-20964 [HIGH] CWE-610 CVE-2023-20964: In multiple functions of MediaSessionRecord.java, there is a possible Intent rebroadcast due to a co In multiple functions of MediaSessionRecord.java, there is a possible Intent rebroadcast due to a confused deputy. This could lead to local denial of service or escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12 Android-12L Android-13Android ID: A

CVE-2023-20906 [HIGH] CVE-2023-20906: In onPackageAddedInternal of PermissionManagerService.java, there is a possible way to silently gran In onPackageAddedInternal of PermissionManagerService.java, there is a possible way to silently grant a permission after a Target SDK update due to a permissions bypass. This could lead to local escalation of privilege after updating an app to a higher Target SDK with no additional execution privileges needed. User interaction is not needed for exploitation.P

CVE-2023-20958 [HIGH] CWE-125 CVE-2023-20958: In read_paint of ttcolr.c, there is a possible out of bounds read due to a heap buffer overflow. Thi In read_paint of ttcolr.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-254803162

CVE-2023-21027 [HIGH] CWE-287 CVE-2023-21027: In multiple functions of PasspointXmlUtils.java, there is a possible authentication misconfiguration In multiple functions of PasspointXmlUtils.java, there is a possible authentication misconfiguration due to a logic error in the code. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-216854451

CVE-2023-20936 [HIGH] CWE-787 CVE-2023-20936: In bta_av_rc_disc_done of bta_av_act.cc, there is a possible out of bounds write due to a missing bo In bta_av_rc_disc_done of bta_av_act.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-226927612

CVE-2023-21001 [HIGH] CWE-862 CVE-2023-21001: In onContextItemSelected of NetworkProviderSettings.java, there is a possible way for users to chang In onContextItemSelected of NetworkProviderSettings.java, there is a possible way for users to change the Wi-Fi settings of other users due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13A

CVE-2023-21003 [HIGH] CWE-862 CVE-2023-21003: In getAvailabilityStatus of several Transcode Permission Controllers, there is a possible permission In getAvailabilityStatus of several Transcode Permission Controllers, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-261193711

CVE-2023-20911 [HIGH] CWE-400 CVE-2023-20911: In addPermission of PermissionManagerServiceImpl.java , there is a possible failure to persist permi In addPermission of PermissionManagerServiceImpl.java , there is a possible failure to persist permission settings due to resource exhaustion. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Andro

CVE-2023-20959 [HIGH] CWE-862 CVE-2023-20959: In AddSupervisedUserActivity, guest users are not prevented from starting the activity due to missin In AddSupervisedUserActivity, guest users are not prevented from starting the activity due to missing permissions checks. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-249057848

CVE-2023-21015 [HIGH] CWE-862 CVE-2023-21015: In getAvailabilityStatus of several Transcode Permission Controllers, there is a possible permission In getAvailabilityStatus of several Transcode Permission Controllers, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-244569778

CVE-2023-20975 [HIGH] CWE-863 CVE-2023-20975: In getAvailabilityStatus of EnableContentCapturePreferenceController.java, there is a possible way t In getAvailabilityStatus of EnableContentCapturePreferenceController.java, there is a possible way to bypass DISALLOW_CONTENT_CAPTURE due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android I

CVE-2023-21005 [HIGH] CWE-862 CVE-2023-21005: In getAvailabilityStatus of several Transcode Permission Controllers, there is a possible permission In getAvailabilityStatus of several Transcode Permission Controllers, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-261193946