Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In onReceive of DcTracker.java, there is a possible way to trigger a provisioning URL and modify other telephony settings due to a missing permission check. This could lead to local escalation of privilege during the onboarding flow with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-172459128
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Google Android 安全漏洞
Vulnerability Description
Google Android是美国~谷歌~开放手持设备联盟(Google)的的一套以Linux为基础的开源操作系统。 Google Android 存在安全漏洞,该漏洞源于在bitalloc.c的allocExcessBits中边界检查不正确,可能会超出范围写入。这可以导致远程代码执行,而无需其他执行特权。
CVSS Information
N/A
Vulnerability Type
N/A