299 matches found
Google Android System elevation of privilege vulnerability (CNVD-2020-27128)
Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An elevation of privilege vulnerability exists in the System component of Google Android 8.0, 8.1, 9, and 10. An attacker can exploit this vulnerability to elevate...
Google Android Media framework elevation of privilege vulnerability (CNVD-2020-27133)
Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. Media Framework is one of the multimedia development frameworks. A security vulnerability exists in the Media framework in Android versions 9 and 10. The vulnerability can be exploited ...
Google Android System elevation of privilege vulnerability (CNVD-2020-27126)
Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An elevation of privilege vulnerability exists in the System component of Google Android 9 and 10. An attacker can exploit this vulnerability to elevate privileges...
Google Android System Remote Code Execution Vulnerability (CNVD-2020-27129)
Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. A remote code execution vulnerability exists in the System component of Google Android 9 and 10. An attacker can exploit this vulnerability to achieve remote code...
CVE-2020-0078
In releaseSecureStops of DrmPlugin.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9...
CVE-2020-0079
In decrypt12 of CryptoPlugin.cpp, there is a possible out of bounds write due to stale pointer. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10Android ID...
CVE-2020-0072
In rwt2thandletlvdetectrsp of rwt2tndef.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over NFC with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8....
CVE-2019-20775
An issue was discovered on LG mobile devices with Android OS 9.0 Qualcomm SDM450, SDM845, SM6150, and SM8150 chipsets software. Weak encryption leads to local information disclosure. The LG ID is LVE-SMP-190010 August 2019...
CVE-2019-20774
An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, 8.1, and 9.0 software. A system service allows local retrieval of the user's password. The LG ID is LVE-SMP-190009 August 2019...
CVE-2019-20770
An issue was discovered on LG mobile devices with Android OS 9.0 software. The HAL service has a buffer overflow that leads to arbitrary code execution. The LG ID is LVE-SMP-190013 September 2019...
CVE-2018-21040
An issue was discovered on Samsung mobile devices with O8.x and P9.0 Exynos 9810 chipsets software. There is a race condition with a resultant use-after-free in the g2d driver. The Samsung ID is SVE-2018-12959 December 2018...
CVE-2020-11602
An issue was discovered on Samsung mobile devices with P9.0 and Q10.0 software. Google Assistant leaks clipboard contents on a locked device. The Samsung ID is SVE-2019-16558 April 2020...
Google Android Media framework out-of-bounds write vulnerability (CNVD-2020-24777)
Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. Media Framework is one of the multimedia development frameworks. A security vulnerability exists in the Media framework in Android versions 9 and 10. The vulnerability can be exploited ...
CVE-2019-20624
An issue was discovered on Samsung mobile devices with N7.x and O8.x software. S-Voice leaks keyboard learned words via the lock screen. The Samsung ID is SVE-2018-12981 February 2019...
CVE-2019-20623
An issue was discovered on Samsung mobile devices with N7.1, O8.x, and P9.0 software. Gallery has uninitialized memory disclosure. The Samsung ID is SVE-2018-13060 February 2019...
CVE-2019-20608
An issue was discovered on Samsung mobile devices with N7.x, O8.x, and P9.0 software. An attacker can use Emergency mode to disable features. The Samsung IDs are SVE-2018-13164, SVE-2018-13165 April 2019...
CVE-2019-20609
An issue was discovered on Samsung mobile devices with P9.0 software. Attackers can use Smartwatch to view Secure Folder notification content. The Samsung ID is SVE-2019-13899 April 2019...
CVE-2019-20605
An issue was discovered on Samsung mobile devices with N7.x, O8.x, and P9.0 Exynos chipsets software. A heap overflow occurs for baseband in the Shannon modem. The Samsung ID is SVE-2019-14071 May 2019...
CVE-2019-20595
An issue was discovered on Samsung mobile devices with P9.0 software. Quick Panel allows enabling or disabling the Bluetooth stack without authentication. The Samsung ID is SVE-2019-14545 July 2019...
CVE-2019-20592
An issue was discovered on Samsung mobile devices with N7.x, O8.x, and P9.0 software. There is local SQL injection in the Story Video Editor Content Provider. The Samsung ID is SVE-2019-14062 July 2019...