mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-24 20:04:01 +02:00
0xMarcio
1.2 KiB
1.2 KiB
CVE-2020-0082
Description
In ExternalVibration of ExternalVibration.java, there is a possible activation of an arbitrary intent due to unsafe deserialization. This could lead to local escalation of privilege to system_server with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-140417434
POC
Reference
No PoCs from references.
Github
- https://github.com/0x742/CVE-2020-0082-ExternalVibration
- https://github.com/ARPSyndicate/cvemon
- https://github.com/NaInSec/CVE-PoC-in-GitHub
- https://github.com/PalindromeLabs/Java-Deserialization-CVEs
- https://github.com/developer3000S/PoC-in-GitHub
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/soosmile/POC
- https://github.com/trhacknon/Pocingit