Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In updateSettingsInternalLI of InstallPackageHelper.java, there is a possible way to sideload an app in the work profile due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Google Android OS 安全漏洞
Vulnerability Description
Google Android是美国谷歌(Google)公司的一套以Linux为基础的开源操作系统。 Google Android OS存在安全漏洞,该漏洞源于在 InstallPackageHelper.java 的 updateSettingsInternalLI 中,缺少权限检查,从而导致本地权限升级。
CVSS Information
N/A
Vulnerability Type
N/A