CVE-2025-20956

Improper export of android application components in Settings in Galaxy Watch prior to SMR May-2025 Release 1 allows physical attackers to access developer settings...

CVE-2025-20955

Improper Export of Android Application Components in NotificationHistoryImageProvider prior to SMR May-2025 Release 1 allows local attackers to access notification images...

SAMSUNG SMR 安全漏洞

SAMSUNG SMR is a system patch package from the South Korean company Samsung SAMSUNG. It provides patches for Samsung mobile applications. SAMSUNG SMR suffers from a security vulnerability that stems from improper export of Android application components in Settings, which could lead to a physical...

SAMSUNG SMR 安全漏洞

SAMSUNG SMR is a system patch package from the South Korean company Samsung SAMSUNG. It provides patches for Samsung mobile applications. SAMSUNG SMR suffers from a security vulnerability that stems from improperly exported Android application components, which could lead to a local attacker...

CVE-2024-40675

In parseUriInternal of Intent.java, there is a possible infinite loop due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2024-40662

In scheme of Uri.java, there is a possible way to craft a malformed Uri object due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2024-34641

Improper Export of Android Application Components in FeliCaTest prior to SMR Sep-2024 Release 1 allows local attackers to enable NFC configuration...

PT-2024-26060 · Google · Android

Name of the Vulnerable Software and Affected Versions: FeliCaTest versions prior to SMR Sep-2024 Release 1 Description: The issue allows local attackers to enable NFC configuration due to improper export of Android application components. Recommendations: For versions prior to SMR Sep-2024 Releas...

PT-2024-18771 · Google · Telephonyui

Name of the Vulnerable Software and Affected Versions: TelephonyUI versions prior to SMR May-2024 Release 1 Description: The issue allows local attackers to reboot the device without proper permission due to an improper export of android application components vulnerability in TelephonyUI...

The vulnerability of the Android operating system’s component loading manager allows attackers to disclose sensitive information that is protected by security measures.

The vulnerability of the Android operating system’s component loading manager is related to insufficient protection of the SQL query structure. Exploiting this vulnerability can allow a remote attacker to disclose sensitive information...

Google Android has an unspecified vulnerability (CNVD-2018-10123)

Android is a Linux-based open-source operating system jointly developed by Google and the Open Handheld Alliance OHA, and Qualcomm MSM8996 and other central processing unit CPU products from Qualcomm. A security vulnerability exists in the Qualcomm closed-source component in Android 2018-04-05 an...

Improper access control

Improper access controls on several Android components in the Lenovo Service Framework application can be exploited to enable remote code execution...

CVE-2017-3758

Improper access controls on several Android components in the Lenovo Service Framework application can be exploited to enable remote code execution...

CVE-2017-3758

Improper access controls on several Android components in the Lenovo Service Framework application can be exploited to enable remote code execution...

Google Android Qualcomm Component eMBMS Unauthorized Operation Vulnerability

Android is a Linux-based open-source operating system developed by Google and the Open Handheld Alliance OHA, and Qualcomm closed-source components are among the closed-source components developed by Qualcomm. A security vulnerability exists in eMBMS of the Qualcomm closed-source component in...

The vulnerability of component 1x of the Android operating system, allowing a hacker to bypass security restrictions

The vulnerability of component 1 of the Android operating system is related to errors in number processing. Exploiting this vulnerability can allow a remote attacker to bypass security restrictions...

Google Android MediaTek component elevation of privilege vulnerability (CNVD-2017-03383)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA in the U.S. MediaTek is a MediaTek component used in one of MediaTek's devices. An elevation of privilege vulnerability exists in the MediaTek components of Android, including the...

CVE-2014-9883

Integer overflow in drivers/char/diag/diagdci.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 2013 devices allows attackers to gain privileges or obtain sensitive information via a crafted application, aka Android internal bug 28769912 and Qualcomm internal bug CR565160...

CVE-2014-9890

Off-by-one error in drivers/media/platform/msm/camerav2/sensor/cci/msmcci.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 2013 devices allows attackers to gain privileges via a crafted application that sends an I2C command, aka Android internal bug 28770207 and Qualcomm...

CVE-2014-9883

Integer overflow in drivers/char/diag/diagdci.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 2013 devices allows attackers to gain privileges or obtain sensitive information via a crafted application, aka Android internal bug 28769912 and Qualcomm internal bug CR565160...