24 matches found
Google Android suffers from an unspecified vulnerability (CNVD-2021-30951)
Google Android is a Linux-based open source operating system from the USGoogleOpen Handheld Alliance Google. Google Android has a security vulnerability that can be exploited by an attacker to potentially cause the disclosure of local information with required system execution privileges...
Google Android Framework elevation of privilege vulnerability (CNVD-2021-22972)
Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An elevation of privilege vulnerability exists in the Framework component of Google Android 8.1, 9, 10, and 11. An attacker could exploit the vulnerability would...
Google Android - getpidcon Usage binder Service Replacement Race Condition
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=851 This is very similar to forshaw's bug , . The servicemanager, when determining whether the sender of a binder transaction is authorized to register a service via SVCMGRADDSERVICE, looks up the sender's SELinux context using...
Google Android Stagefright MP4 Multiple Atoms Integer Underflow (CVE-2015-1539; CVE-2015-3827)
A remote code execution vulnerability, known as Stagefright Vulnerability, has been reported in Android devices core. The vulnerability is due to an integer underflow condition in multiple MP4 atoms. Successful exploitation would allow an attacker to execute arbitrary code on the target system...