Google Android 11.0 NotificationManagerService default permission

entryeditHistoryDiffjsonxmlCTI

A vulnerability has been found in Google Android 11.0 (Smartphone Operating System) and classified as problematic. This vulnerability affects some unknown functionality of the component NotificationManagerService. Applying a patch is able to eliminate this problem.

Field09/19/2020 08:42 AM09/19/2020 08:47 AM
vendorGoogleGoogle
nameAndroidAndroid
version11.011.0
componentNotificationManagerServiceNotificationManagerService
risk11
cvss2_vuldb_basescore1.51.5
cvss2_vuldb_tempscore1.31.3
cvss2_vuldb_avLL
cvss2_vuldb_acMM
cvss2_vuldb_auSS
cvss2_vuldb_ciPP
cvss2_vuldb_iiNN
cvss2_vuldb_aiNN
cvss3_meta_basescore4.44.4
cvss3_meta_tempscore4.24.2
cvss3_vuldb_basescore3.33.3
cvss3_vuldb_tempscore3.23.2
cvss3_vuldb_avLL
cvss3_vuldb_acLL
cvss3_vuldb_prLL
cvss3_vuldb_uiNN
cvss3_vuldb_sUU
cvss3_vuldb_cLL
cvss3_vuldb_iNN
cvss3_vuldb_aNN
date1600387200 (09/18/2020)1600387200 (09/18/2020)
urlhttps://source.android.com/security/bulletin/android-11https://source.android.com/security/bulletin/android-11
price_0day$5k-$25k$5k-$25k
price_trend++
namePatchPatch
cveCVE-2020-0313CVE-2020-0313
seealso161398 161399 161402 161403 161404 161405 161406 161407 161408 161410 161411 161412 161413 161414 161415 161416 161417 161418 161419 161420 161421 161422 161423 161424 161425 161426 161427 161428 161429 161430161398 161399 161402 161403 161404 161405 161406 161407 161408 161410 161411 161412 161413 161414 161415 161416 161417 161418 161419 161420 161421 161422 161423 161424 161425 161426 161427 161428 161429 161430
locationWebsiteWebsite
cvss2_vuldb_eNDND
cvss2_vuldb_rlOFOF
cvss2_vuldb_rcNDND
cvss3_vuldb_eXX
cvss3_vuldb_rlOO
cvss3_vuldb_rcXX
cvss3_nvd_basescore5.55.5
typeSmartphone Operating System
cwe0276 (privilege escalation)
cvss2_nvd_avL
cvss2_nvd_acL
cvss2_nvd_auN
cvss2_nvd_ciP
cvss2_nvd_iiN
cvss2_nvd_aiN
cvss3_nvd_avL
cvss3_nvd_acL
cvss3_nvd_prL
cvss3_nvd_uiN
cvss3_nvd_sU
cvss3_nvd_cH
cvss3_nvd_iN
cvss3_nvd_aN
cve_assigned1571270400
cve_nvd_summaryIn NotificationManagerService, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-154917989

Do you want to use VulDB in your project?

Use the official API to access entries easily!