admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-05-08 19:46:43 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2020/CVE-2020-0416.md

22 lines
1.1 KiB
Markdown
Raw Normal View History

Update Sat May 25 21:48:12 CEST 2024
2024-05-25 21:48:12 +02:00
### [CVE-2020-0416](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0416)
![](https://img.shields.io/static/v1?label=Product&message=Android&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Elevation%20of%20privilege&color=brighgreen)
### Description
In multiple settings screens, there are possible tapjacking attacks due to an insecure default value. This could lead to local escalation of privilege and permissions with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.0 Android-8.1Android ID: A-155288585
### POC
#### Reference
No PoCs from references.
#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/Satheesh575555/packages_apps_Settings_AOSP10_r33_CVE-2020-0416
- https://github.com/ShaikUsaf/packages_apps_settings_AOSP10_r33_CVE-2020-0416
- https://github.com/TinyNiko/android_bulletin_notes
- https://github.com/nomi-sec/PoC-in-GitHub
Reference in New Issue Copy Permalink