In multiple functions of multiple files, there is a possible way to make the device unusable due to improper input validation. This could lead to…

In multiple files, there is a possible way to access traces in the dev mode due to a permissions bypass. This could lead to local…

In several functions of several files, there is a possible way to access developer mode traces due to a permissions bypass. This could lead to…

In bindPlayer of MediaControlPanel.java, there is a possible launch arbitrary activity in SysUI due to Unsafe Intent. This could lead to local escalation of privilege…

In onNullBinding of CallRedirectionProcessor.java, there is a possible long lived connection due to improper input validation. This could lead to local escalation of privilege and…

In several methods of JobStore.java, uncaught exceptions in job map parsing could lead to local persistent denial of service with no additional execution privileges needed.…

In multiple functions of JobStore.java, there is a possible way to cause a crash on startup due to improper input validation. This could lead to…

In onCreate of NotificationAccessSettings.java, there is a possible failure to persist notifications settings due to improper input validation. This could lead to local escalation of…

In checkKeyIntentParceledCorrectly() of ActivityManagerService.java, there is a possible bypass of Parcel Mismatch mitigations due to a logic error in the code. This could lead to…

In btm_ble_periodic_adv_sync_lost of btm_ble_gap.cc, there is a possible remote code execution due to a buffer overflow. This could lead to remote code execution with no…