CVE-2020-0416

In multiple settings screens, there are possible tapjacking attacks due to an insecure default value. This could lead to local escalation of privilege and permissions with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.0 Android-8.1Android ID: A-155288585

Link	Resource
https://source.android.com/security/bulletin/2020-10-01	Patch Vendor Advisory

Configuration 1

cpe:2.3:o:google:android:8.0:*:*:*:*:*:*:* cpe:2.3:o:google:android:8.1:*:*:*:*:*:*:* cpe:2.3:o:google:android:9.0:*:*:*:*:*:*:* cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:* cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*

---

Published : 2020-10-14 02:15

Updated : 2020-10-16 05:13

---

NVD link : CVE-2020-0416

Mitre link : CVE-2020-0416

No products.

CWE-1188

Insecure Default Initialization of Resource