296,172
Total vulnerabilities in the database
In applyTaskFragmentOperation of WindowOrganizerController.java, there is a possible way to launch arbitrary activities as the system UID due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
| Software | From | Fixed in |
|---|---|---|
| google / android | 13.0 | 13.0.x |
| google / android | 14.0 | 14.0.x |
| google / android | 15.0 | 15.0.x |