{"id":"ASB-A-157598026", "published":"2020-09-01T00:00:00Z", "modified":"2026-04-29T15:10:00.007170452Z", "aliases":["CVE-2020-0390", "A-157598026"], "details":"In the app zygote SE Policy, there is a possible permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.", "affected":[{"package":{"name":"platform/system/sepolicy", "ecosystem":"Android"}, "ranges":[{"type":"ECOSYSTEM", "events":[{"introduced":"10:0"}, {"fixed":"10:2020-09-01"}]}], "versions":["10"], "ecosystem_specific":{"fixes":["https://android.googlesource.com/platform/system/sepolicy/+/4c386e10c98b63cdb07bd940287e2cf1a63526c0"], "severity":"High", "spl":"2020-09-01", "types":["ID"]}}], "references":[{"type":"ADVISORY", "url":"https://source.android.com/security/bulletin/2020-09-01"}, {"type":"FIX", "url":"https://android.googlesource.com/platform/system/sepolicy/+/4c386e10c98b63cdb07bd940287e2cf1a63526c0"}]}