Description
In GetPermittedAccessibilityServicesForUser of DevicePolicyManagerService.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege, with no additional permissions required. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1. Android ID: A-128599660.
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Android | Android | affected |
|
Configuration 1 [-]
|
No data.
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
| Link | Providers |
|---|---|
| https://source.android.com/security/bulletin/2019-06-01 |
|
History
No history.
MITRE
Status: PUBLISHED
Assigner: google_android
Published:
Updated: 2024-08-04T18:42:50.429Z
Reserved: 2018-12-10T00:00:00.000Z
Link: CVE-2019-2091
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-06-07T20:29:01.013
Modified: 2024-11-21T04:40:12.833
Link: CVE-2019-2091
Redhat
No data.
OpenCVE Enrichment
No data.
Weaknesses