Google Android System Buffer Overflow Vulnerability (CNVD-2019-39716)

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA. A buffer overflow vulnerability exists in the Bluetooth stack in Android version 10. An attacker can exploit the vulnerability to elevate privileges...

Google Android System Elevation of Privilege Vulnerability (CNVD-2019-39721)

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA. A security vulnerability exists in telephony in Android version 10, which stems from the program's lack of boundary checking. An attacker could exploit the vulnerability to elevate privileges...

Google Android System Information Disclosure Vulnerability (CNVD-2019-31052)

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. System is one of the system components. There is an information disclosure vulnerability in System in Android Q. The vulnerability arises from errors in the configuration of a networked...

PT-2019-12304 · Tencent · Wechat

Name of the Vulnerable Software and Affected Versions: WeChat application through 7.0.3 for Android Description: The issue allows attackers to cause a denial of service, resulting in an application crash. This is achieved by replacing an emoji file under the /sdcard/tencent/MicroMsg directory wit...

CVE-2019-2039

In rwi93smdetectndef of rwi93.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1...

Android Security Bulletin—January 2019Stay organized with collectionsSave and categorize content based on your preferences.

The Android Security Bulletin contains details of security vulnerabilities affecting Android devices. Security patch levels of 2019-01-05 or later address all of these issues. To learn how to check a device's security patch level, see Check and update your Android version. Android partners are...

CVE-2018-6344

A heap corruption in WhatsApp can be caused by a malformed RTP packet being sent after a call is established. The vulnerability can be used to cause denial of service. It affects WhatsApp for Android prior to v2.18.293, WhatsApp for iOS prior to v2.18.93, and WhatsApp for Windows Phone prior to...

Android 5.0 Battery Information Broadcast Information Disclosure

NOTE: This bug is part of a series of three related Android bugs with the same root cause: CVE-2018-9489, CVE-2018-9581 and CVE-2018-15835. A presentation covering all three bugs was given at BSides DE in the fall of 2018. SUMMARY System broadcasts by the Android operating system expose detailed...

Google Android System Information Disclosure Vulnerability (CNVD-2018-22647)

Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. An information disclosure vulnerability exists in the System component of Google Android 7.0, 7.1.1, 7.1.2, 8.0, 8.1, and 9, which can be exploited by attackers to obtain...

CVE-2018-0664

A vulnerability in NoMachine App for Android 5.0.63 and earlier allows attackers to alter environment variables via unspecified vectors...

CVE-2017-9818

The National Payments Corporation of India BHIM application 1.3 for Android relies on a four-digit passcode, which makes it easier for attackers to obtain access...

Google Android P is officially called Android 9 Pie

If you have bet on Peppermint, Pancake or Pastry for "P" in the next version of Google's mobile operating system, sorry guys you lose because Android P stands for Android Pie. Yes, the next version of sugary snack-themed Android and the successor to Android Oreo will now be known as Android 9.0 P...

CVE-2017-13302

A denial of service vulnerability in the Android system system ui. Product: Android. Versions: 8.0. Android ID: A-69969749...

Android Framework (ui framework) Information Disclosure Vulnerability

Android on Google Pixel and Nexus is a Linux-based open source operating system for Google Pixel and Nexus smartphones developed by Google and the Open Handset Alliance OHA.Framework ui framework is one of the UI multimedia development frameworks. Framework ui framework is one of the UI multimedi...

CVE-2017-13239

A information disclosure vulnerability in the Android framework ui framework. Product: Android. Versions: 8.0. ID: A-66244132...

CVE-2017-8153

Huawei VMall for Android with the versions before 1.5.8.5 have a privilege elevation vulnerability due to improper design. An attacker can trick users into installing a malicious app which can send out HTTP requests and execute JavaScript code in web pages without obtaining the Internet access...

CVE-2017-0847

An elevation of privilege vulnerability in the Android media framework mediaanalytics. Product: Android. Versions: 8.0. Android ID: A-65540999...

Google Android Framework elevation of privilege vulnerability (CNVD-2017-35660)

Android is a set of Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA for short.Framework window manager is one of the window management framework. A power lifting vulnerability exists in Framework window manager in Android 8.0. A remote...

Android Security Bulletin—November 2017Stay organized with collectionsSave and categorize content based on your preferences.

The Android Security Bulletin contains details of security vulnerabilities affecting Android devices. Security patch levels of 2017-11-06 or later address all of these issues. To learn how to check a device's security patch level, see Check and update your Android version. Android partners were...

UBUNTU-CVE-2017-5083

Inappropriate implementation in Blink in Google Chrome prior to 59.0.3071.86 for Mac, Windows, and Linux, and 59.0.3071.92 for Android, allowed a remote attacker to display UI on a non attacker controlled tab via a crafted HTML page...