Security Advisory

CVE-2020-0479

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-12-15 15:54:41

Last updated 2024-08-04 06:02:51

Assigner google_android

State PUBLISHED

Description

In callUnchecked of DocumentsProvider.java, there is a possible permissions bypass. This could lead to local escalation of privilege allowing a malicious app to access files available to the DocumentProvider without user permission, with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-157294893

← Browse all CVEs View on cve.org ↗