Every CVE whose affected-product data names Oppo Coloros, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2020-11829 — CVSS 9.8 (critical): Dynamic loading of services in the backup and restore SDK leads to elevated privileges, affected product is com.coloros.codebook…
CVE-2021-23244 — CVSS 7.8 (high): ColorOS pregrant dangerous permissions to apps which are listed in a whitelist xml named default-grant-permissions.But some apps in…
CVE-2020-11828 — CVSS 7.5 (high): In ColorOS (oppo mobile phone operating system, based on AOSP frameworks/native code position/services/surfaceflinger surfaceflinger.CPP)…
CVE-2021-23246 — CVSS 7.5 (high): In ACE2 ColorOS11, the attacker can obtain the foreground package name through permission promotion, resulting in user information…