Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In checkKeyIntentParceledCorrectly of AccountManagerService.java, there is a possible way to bypass parcel mismatch mitigation due to unsafe deserialization. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Google Android 代码问题漏洞
Vulnerability Description
Google Android是美国谷歌(Google)公司的一套以Linux为基础的开源操作系统。 Google Android存在安全漏洞,该漏洞源于AccountManagerService.java文件的checkKeyIntentParceledCorrectly函数包含一个不安全的反序列化,有可能绕过包裹不匹配缓解。
CVSS Information
N/A
Vulnerability Type
N/A