Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In CarSetings, there is a possible to pair BT device bypassing user's consent due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-216190509
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Google Android CarSetings 安全漏洞
Vulnerability Description
Google Android是美国谷歌(Google)公司的一套以Linux为基础的开源操作系统。 Google Android CarSetings存在安全漏洞,该漏洞源于缺少权限检查。攻击者利用该漏洞与蓝牙设备配对,从而导致本地权限升级。
CVSS Information
N/A
Vulnerability Type
N/A