In PackageManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could…

In Connectivity, there is a possible bypass the restriction of starting activity from background due to a logic error in the code. This could lead…

In AppSearchManagerService, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could…

In AppSearchManagerService, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could…

In PackageInstaller, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could…

In Midi, there is a possible way to learn about private midi devices due to a permissions bypass. This could lead to local escalation of…

In AppOpsService, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could…

In Ivanti Pulse Secure Pulse Connect Secure (PCS) before 9.1R12, the administrator password is stored in the HTML source code of the “Maintenance > Push…

In Bluetooth, there is a possible cleanup failure due to an uncaught exception. This could lead to remote denial of service in Bluetooth with no…

In Wi-Fi, there is a permissions bypass. This could lead to local escalation of privilege from the guest user with no additional execution privileges needed.…