Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In setInputMethodWithSubtypeIdLocked of InputMethodManagerService.java, there is a possible way to setup input methods that are not enabled due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-227207653
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Google Pixel 输入验证错误漏洞
Vulnerability Description
Google Pixel是美国谷歌(Google)公司的一款智能手机。 Google Pixel存在安全漏洞,该漏洞源于在InputMethodManagerService.java的setInputMethodWithSubtypeIdLocked中,由于输入验证不当,可能会绕过通知隐藏首选项,这可能会导致本地权限升级。
CVSS Information
N/A
Vulnerability Type
N/A