Lucene search
K

1605 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:15 a.m.6 views

CVE-2019-2003

In addLinks of Linkify.java, there is a possible phishing vector due to an unusual root cause. This could lead to remote code execution or misdirection of clicks with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-7.0...

9.3CVSS7.9AI score0.0137EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:14 a.m.8 views

CVE-2019-2178

In rwt4tsmreadndef of rwt4t in Android 7.1.1, 7.1.2, 8.0, 8.1 and 9, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the NFC service with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS7.3AI score0.00189EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:14 a.m.8 views

CVE-2019-2196

In Download Provider, there is possible SQL injection. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-135269143...

5.5CVSS7.1AI score0.00403EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:14 a.m.8 views

CVE-2019-2134

In phFriNfcExtnsTransceive of phNxpExtnsMifareStd.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions:...

9.3CVSS7.3AI score0.00519EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:14 a.m.8 views

CVE-2019-2125

In ChangeDefaultDialerDialog.java, there is a possible escalation of privilege due to an overlay attack. This could lead to local escalation of privilege, granting privileges to a local app without the user's informed consent, with no additional privileges needed. User interaction is needed for...

7.3CVSS7.1AI score0.00138EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:13 a.m.9 views

CVE-2019-2228

In arrayfind of array.c, there is a possible out-of-bounds read due to an incorrect bounds check. This could lead to local information disclosure in the printer spooler with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

5.5CVSS6AI score0.00203EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:13 a.m.12 views

CVE-2019-2130

In CompilationJob::FinalizeJob of compiler.cc, there is a possible remote code execution due to type confusion. This could lead to escalation of privilege from a malicious proxy configuration with no additional execution privileges needed. User interaction is not needed for exploitation. Product:...

10CVSS8.2AI score0.0165EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:13 a.m.8 views

CVE-2019-2211

In createProjectionMapForQuery of TvProvider.java, there is possible SQL injection. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9...

7.8CVSS7.1AI score0.00669EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:13 a.m.6 views

CVE-2019-2013

In rwt3tacthandlesrorsp of rwt3t.cc, there is a possible out-of-bound write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-7.0 Android-7.1...

9.3CVSS7.2AI score0.00796EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:13 a.m.9 views

CVE-2019-2112

In several functions of alarm.cc, there is possible memory corruption due to a use after free. This could lead to local code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-8.0 Android-8.1 Android-9...

7.8CVSS7.4AI score0.00153EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:12 a.m.7 views

CVE-2019-2185

In VlcDequantH263IntraBlockSH of vlcdequant.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-7.1.1...

9.3CVSS7.9AI score0.01345EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:12 a.m.11 views

CVE-2019-2015

In rwt3tacthandlecheckrsp of rwt3t.cc, there is a possible out-of-bound write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-7.0...

9.3CVSS7.2AI score0.00796EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:7 a.m.9 views

CVE-2019-20772

An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, 8.1, and 9.0 software. The Account subsystem allows authorization bypass. The LG ID is LVE-SMP-190007 August 2019...

9.8CVSS7.1AI score0.00455EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:5 a.m.8 views

CVE-2019-20778

An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, 8.1, and 9.0 software. The Backup subsystem does not properly restrict operations or validate their input. The LG ID is LVE-SMP-190004 June 2019...

9.8CVSS7.2AI score0.00443EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:14 a.m.6 views

CVE-2022-23434

A vulnerability using PendingIntent in Bixby Vision prior to versions 3.7.60.8 in Android S12, 3.7.50.6 in Andorid R11 and below allows attackers to execute privileged action by hijacking and modifying the intent...

4.4CVSS7.1AI score0.00237EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/19 4:39 p.m.4 views

EUVD-2025-204586

ArcSearch for Android versions prior to 1.12.6 could display a different domain in the address bar than the content being shown, enabling address bar spoofing after user interaction via crafted web content...

7.4CVSS6.2AI score0.00173EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/19 12:0 a.m.4 views

PT-2025-52488

ArcSearch for Android versions prior to 1.12.6 could display a different domain in the address bar than the content being shown, enabling address bar spoofing after user interaction via crafted web content...

7.4CVSS6.6AI score0.00173EPSS
Exploits0References2
NVD
NVD
added 2025/12/15 7:15 a.m.4 views

CVE-2025-14019

LINE client for Android versions from 13.8 to 15.5 is vulnerable to UI spoofing in the in-app browser where a specific layout could obscure the full-screen warning prompt, potentially allowing attackers to conduct phishing attacks...

4.7CVSS0.00148EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/15 6:38 a.m.21 views

CVE-2025-14019

LINE client for Android versions from 13.8 to 15.5 is vulnerable to UI spoofing in the in-app browser where a specific layout could obscure the full-screen warning prompt, potentially allowing attackers to conduct phishing attacks...

3.4CVSS0.00148EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/15 6:38 a.m.4 views

EUVD-2025-203349

LINE client for Android versions from 13.8 to 15.5 is vulnerable to UI spoofing in the in-app browser where a specific layout could obscure the full-screen warning prompt, potentially allowing attackers to conduct phishing attacks...

3.4CVSS6.2AI score0.00148EPSS
Exploits0References2
Rows per page
Query Builder