Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability caused by a clickjacking/overwriting attack in the maybeShowDialog function in ControlsSettingsDialogManager.kt that results in ControlsSettingsTialog...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from the American company Google. Google Android suffers from a security vulnerability that stems from a lack of permission checking, which could lead to local elevation of privileges...

Pixel Update Bulletin—September 2025Stay organized with collectionsSave and categorize content based on your preferences.

The Pixel Update Bulletin contains details of security vulnerabilities and functional improvements affecting supported Pixel devices Google devices. For Google devices, security patch levels of 2025-09-05 or later address all issues in this bulletin and all issues in the September 2025 Android...

PT-2025-35654

Name of the Vulnerable Software and Affected Versions Android Runtime affected versions not specified Description The Android Runtime contains a use-after-free vulnerability that allows for escaping the Chrome sandbox to attack the Android system server. Successful exploitation could lead to loca...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability that is caused by a type confusion error in avdtmsgind of avdtmsg.cc. An attacker can exploit the vulnerability to gain elevated privileges on the system...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google, Inc. in the United States. A security vulnerability exists in Google Android, which stems from a logic error in the contentDescForNotification function in NotificationContentDescription.kt, which could lead to the disclosur...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google, Inc. in the United States. A security vulnerability exists in Google Android that stems from a logic error in ConnectionServiceWrapper.java that could lead to local elevation of privilege...

Pixel Watch Security Bulletin—May 2025Stay organized with collectionsSave and categorize content based on your preferences.

The Pixel Watch Security Bulletin contains details of security vulnerabilities affecting Pixel Watch devices Google Devices. For Google devices, security patch levels of 2025-05-01 or later address all issues in this bulletin and all issues in the May 2025 Android Security Bulletin and all issues...

Pixel Watch Security Bulletin—January 2025Stay organized with collectionsSave and categorize content based on your preferences.

The Pixel Watch Security Bulletin contains details of security vulnerabilities affecting Pixel Watch devices Google Devices. For Google devices, security patch levels of 2025-01-01 or later address all issues in this bulletin and all issues in the January 2025 Android Security Bulletin and all...

CVE-2025-21024

Use of Implicit Intent for Sensitive Communication in Smart View prior to Android 16 allows local attackers to access sensitive information...

Google's August Patch Fixes Two Qualcomm Vulnerabilities Exploited in the Wild

Google has released security updates to address multiple security flaws in Android, including fixes for two Qualcomm bugs that were flagged as actively exploited in the wild. The vulnerabilities include CVE-2025-21479 CVSS score: 8.6 and CVE-2025-27038 CVSS score: 7.5, both of which were disclose...

Android Security Bulletin—August 2025Stay organized with collectionsSave and categorize content based on your preferences.

The Android Security Bulletin contains details of security vulnerabilities affecting Android devices. Security patch levels of 2025-08-05 or later address all of these issues. To learn how to check a device's security patch level, see Check and update your Android version. Android partners are...

awesome-android-security

A curated list of Android Security materials and resources For Pentesters and Bug Hunters...

PT-2025-31629

Name of the Vulnerable Software and Affected Versions Mozilla Firefox affected versions not specified Description The vulnerability in Mozilla Firefox on Android operating systems relates to a flaw in the data protection mechanism. Remote exploitation of this issue may allow an attacker to bypass...

Wear OS Security Bulletin—July 2025Stay organized with collectionsSave and categorize content based on your preferences.

The Wear OS Security Bulletin contains details of security vulnerabilities affecting the Wear OS platform. The full Wear OS update comprises the security patch level of 2025-07-05 or later from the July 2025 Android Security Bulletin in addition to all issues in this bulletin. We encourage all...

Android May Soon Warn You About Fake Cell Towers

Plus: Iran-linked hackers threaten to release Trump campaign emails, Chinese hackers still in US telecoms networks, and an abusive deepfake website plans an expansion...

Mozilla Firefox Security Bypass Vulnerability (CNVD-2025-15500)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security bypass vulnerability exists in Mozilla Firefox, which originates from External App Open Prompt for Android can be bypassed and can be exploited by attackers to bypass security restrictions...

CVE-2025-6428 Firefox for Android opened URLs specified in a link querystring parameter

When a URL was provided in a link querystring parameter, Firefox for Android would follow that URL instead of the correct URL, potentially leading to phishing attacks. This bug only affects Firefox for Android. Other versions of Firefox are unaffected.. This vulnerability was fixed in Firefox 140...

CVE-2025-2091 Open redirection in M-Files Mobile

An open redirection vulnerability in M-Files mobile applications for Android and iOS prior to version 25.6.0 allows attackers to use maliciously crafted PDF files to trick other users into making requests to untrusted URLs...

The vulnerability of the Framework component of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the Framework component in the Android operating system relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to increase their privileges...