In AudioService, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could…

In libstagefright, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no…

In WindowManager, there is a possible way to start a foreground activity from the background due to a missing permission check. This could lead to…

In PermissionController, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed.…

In Framework, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could…

In DevicePolicyManager, there is a possible way to reveal the existence of an installed package without proper query permissions due to side channel information disclosure.…

In ContextImpl, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could…

In DomainVerificationService, there is a possible way to access app domain verification information due to a missing permission check. This could lead to local information…

In Bubbles, there is a possible way to interfere with Bubbles due to a permissions bypass. This could lead to local escalation of privilege with…

In Settings, there is a possible way to read Bluetooth device names without proper permissions due to a missing permission check. This could lead to…