In onCreateSliceProvider of KeyguardSliceProvider.java, there is a possible confused deputy due to a PendingIntent error. This could lead to local escalation of privilege that allows actions performed as the System UI, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-147606347
References
Link | Resource |
---|---|
https://source.android.com/security/bulletin/2020-06-01 | Patch Vendor Advisory |
Configurations
Information
Published : 2020-06-10 11:15
Updated : 2021-07-21 04:39
NVD link : CVE-2020-0114
Mitre link : CVE-2020-0114
JSON object : View
CWE
Products Affected
- android