Falhas do tipo CWE-862
7.076 resultadosCVE-2026-20696MEDIUMAn authorization issue was addressed with improved state management. This issue is fixed in macOS Tahoe 26.4. An app may be able to access sEPSS 0.1%CVE-2021-39810HIGHIn verifyDefaults of CardEmulationManager.java, there is a possible way to set a third party app as the default contactless payment app withEPSS 0.1%CVE-2022-48383HIGH.In srtd service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional executioEPSS 0.1%CVE-2022-38670HIGHIn soundrecorder service, there is a missing permission check. This could lead to elevation of privilege in contacts service with no additioEPSS 0.1%CVE-2022-38669HIGHIn soundrecorder service, there is a missing permission check. This could lead to elevation of privilege in contacts service with no additioEPSS 0.1%CVE-2022-20544MEDIUMIn onOptionsItemSelected of ManageApplications.java, there is a possible bypass of profile owner restrictions due to a missing permission chEPSS 0.1%CVE-2022-20240LOWIn sOpAllowSystemRestrictionBypass of AppOpsManager.java, there is a possible leak of location information due to a missing permission checkEPSS 0.1%CVE-2022-39090HIGHIn power management service, there is a missing permission check. This could lead to set up power management service with no additional execEPSS 0.1%CVE-2024-5899LOWImproper trust check in Bazel Build intellij pluginEPSS 0.1%CVE-2022-20533LOWIn getSlice of WifiSlice.java, there is a possible way to connect a new WiFi network from the guest mode due to a missing permission check. EPSS 0.1%CVE-2023-21002HIGHIn getAvailabilityStatus of several Transcode Permission Controllers, there is a possible permission bypass due to a missing permission checEPSS 0.1%CVE-2022-39092HIGHIn power management service, there is a missing permission check. This could lead to set up power management service with no additional execEPSS 0.1%CVE-2022-20537LOWIn createDialog of WifiScanModeActivity.java, there is a possible way for a Guest user to enable location-sensitive settings due to a missinEPSS 0.1%CVE-2022-39091HIGHIn power management service, there is a missing permission check. This could lead to set up power management service with no additional execEPSS 0.1%CVE-2022-20536LOWIn registerBroadcastReceiver of RcsService.java, there is a possible way to change preferred TTY mode due to a missing permission check. ThiEPSS 0.1%CVE-2025-48549HIGHIn multiple locations, there is a possible way to record audio via a background app due to a missing permission check. This could lead to loEPSS 0.1%CVE-2021-0641MEDIUMIn getAvailableSubscriptionInfoList of SubscriptionController.java, there is a possible disclosure of unique identifiers due to a missing peEPSS 0.1%CVE-2022-39110HIGHIn Music service, there is a missing permission check. This could lead to elevation of privilege in Music service with no additional executiEPSS 0.1%CVE-2022-38698HIGHIn messaging service, there is a missing permission check. This could lead to elevation of privilege in contacts service with no additional EPSS 0.1%CVE-2022-39100HIGHIn power management service, there is a missing permission check. This could lead to set up power management service with no additional execEPSS 0.1%