296,202
Total vulnerabilities in the database
In multiple functions in AppInfoBase.java, there is a possible way to manipulate app permission settings belonging to another user on the device due to a missing permission check. This could lead to local escalation of privilege across user boundaries with no additional execution privileges needed. User interaction is not needed for exploitation.
| Software | From | Fixed in |
|---|---|---|
| google / android | 12.0 | 12.0.x |
| google / android | 12.1 | 12.1.x |
| google / android | 13.0 | 13.0.x |
| google / android | 14.0 | 14.0.x |
| google / android | 15.0 | 15.0.x |