Vulnerabilities

CVE-2020-0485

by Fred · 15/12/2020

In areFunctionsSupported of UsbBackend.java, there is a possible access to tethering from a guest account due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-166125765

Date published : 2020-12-15

https://source.android.com/security/bulletin/pixel/2020-12-01

Similar

Tags: Cybersecurity Alert