ASB-A-371975420

See a problem?
Import Source
https://storage.googleapis.com/android-osv/ASB-A-371975420.json
JSON Data
https://api.osv.dev/v1/vulns/ASB-A-371975420
Aliases
Published
2025-01-01T00:00:00Z
Modified
2026-04-17T15:55:28.020024Z
Summary
[none]
Details

In multiple functions of CompanionDeviceManagerService.java, there is a possible way to grant permissions without user consent due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android / platform/frameworks/base

Package

Name
platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
15-next:0
Fixed
15-next:2025-01-01

Affected versions

Other
15-next

Ecosystem specific 

{
    "vanir_signatures": [
        {
            "digest": {
                "length": 86.0,
                "function_hash": "325547799349776628956852058422162887335"
            },
            "id": "ASB-A-371975420-645622a5",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/7e5e47611d6f3271df264bb8ca9545ca3ba80361",
            "target": {
                "function": "enablePermissionsSync",
                "file": "services/companion/java/com/android/server/companion/CompanionDeviceManagerService.java"
            }
        },
        {
            "digest": {
                "length": 86.0,
                "function_hash": "325547799349776628956852058422162887335"
            },
            "id": "ASB-A-371975420-8c5fec4b",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/7e5e47611d6f3271df264bb8ca9545ca3ba80361",
            "target": {
                "function": "disablePermissionsSync",
                "file": "services/companion/java/com/android/server/companion/CompanionDeviceManagerService.java"
            }
        },
        {
            "digest": {
                "length": 93.0,
                "function_hash": "184969778027347715404234350735920144006"
            },
            "id": "ASB-A-371975420-aee88cd6",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Function",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/7e5e47611d6f3271df264bb8ca9545ca3ba80361",
            "target": {
                "function": "getPermissionSyncRequest",
                "file": "services/companion/java/com/android/server/companion/CompanionDeviceManagerService.java"
            }
        },
        {
            "digest": {
                "threshold": 0.9,
                "line_hashes": [
                    "31383610075177406818730483972757974460",
                    "94427483219342024353394234258568613019",
                    "279611850105123945749576903241054973737",
                    "295091891336711870713095889099124920231",
                    "293290536639458632448642867313917577954",
                    "115179478063496338277254319452012577918",
                    "100729554523683161047881112879348806003",
                    "140040083095464383787596444328554164057",
                    "18538333375630601579707101631068815489",
                    "284039753809038667627430981028587418684",
                    "304070470983574557448026563449469075677",
                    "30304423151255348775357260736044561574"
                ]
            },
            "id": "ASB-A-371975420-cc29bf53",
            "deprecated": false,
            "signature_version": "v1",
            "signature_type": "Line",
            "source": "https://android.googlesource.com/platform/frameworks/base/+/7e5e47611d6f3271df264bb8ca9545ca3ba80361",
            "target": {
                "file": "services/companion/java/com/android/server/companion/CompanionDeviceManagerService.java"
            }
        }
    ],
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/7e5e47611d6f3271df264bb8ca9545ca3ba80361"
    ],
    "types": [
        "EoP"
    ],
    "spl": "2025-01-01",
    "severity": "High"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-371975420.json"

Android / platform/frameworks/base

Package

Name
platform/frameworks/base

Affected ranges

Type
ECOSYSTEM
Events
Introduced
15:0
Fixed
15:2025-01-01

Affected versions

Other
15

Ecosystem specific 

{
    "fixes": [
        "https://android.googlesource.com/platform/frameworks/base/+/08f57da9e39869f696de4225197530aa2b9187e8"
    ],
    "types": [
        "EoP"
    ],
    "spl": "2025-01-01",
    "severity": "High"
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-371975420.json"