Security Advisory

CVE-2020-0114

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-06-10 17:10:57
Last updated 2024-08-04 05:47:40
Assigner google_android
State PUBLISHED

Description

In onCreateSliceProvider of KeyguardSliceProvider.java, there is a possible confused deputy due to a PendingIntent error. This could lead to local escalation of privilege that allows actions performed as the System UI, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-147606347