In checkAccess of SliceManagerService.java in Android 9, there is a possible permissions check bypass due to incorrect order of arguments. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.
References
Link | Resource |
---|---|
https://source.android.com/security/bulletin/2019-09-01 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: google_android
Published: 2019-09-05T21:34:22
Updated: 2019-09-05T21:34:22
Reserved: 2018-12-10T00:00:00
Link: CVE-2019-2175
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-09-05T22:15:12.007
Modified: 2020-08-24T17:37:01.140
Link: CVE-2019-2175
JSON object: View
Redhat Information
No data.
CWE