PT-2023-18064 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions prior to the fixed version Description: The issue is related to a confused deputy in the setMetadata function of MediaSessionRecord.java. This could lead to local information disclosure, allowing an attacker to view another...

PT-2022-14732 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions prior to the fixed version Description: The issue is related to a missing permission check in the onCreate method of AddAppNetworksActivity.java. This could allow a guest user to configure WiFi networks, potentially leading t...

PT-2022-14466 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions prior to Android-13 Description: The issue is related to a missing bounds check in Bluetooth, which could lead to a local escalation of privilege. This can occur when more than 100 Bluetooth devices have been connected, with ...

Shazam injection vulnerability

Shazam is a music playing application. The program has features such as music recognition and playback. An injection vulnerability exists in Shazam versions prior to 9.25.0 Android and 12.11.0 iOS. An attacker can exploit the vulnerability to execute arbitrary JavaScript code with the help of a...

CVE-2018-5326

Cheetah Mobile CM Browser 5.22.06.0012, when installed on unspecified "older" Android platforms, allows Same Origin Policy Bypass...

CVE-2018-5327

Cheetah Mobile Armorfly Browser & Downloader 1.1.05.0010, when installed on unspecified "older" Android platforms, allows Same Origin Policy Bypass...

Android SyncManager Denial of Service Vulnerability

Android is a cell phone operating system based on the Linux open kernel. A security vulnerability exists in the implementation of SyncManager in versions of Android prior to 5.1.1 LMY49F, and 6.0 prior to 2016-01-01. A remote attacker exploiting the vulnerability can cause a denial of service...

Android kernel elevation of privilege vulnerability

Android is a cell phone operating system based on the Linux open kernel. The kernel in versions prior to Android 5.1.1 LMY48Z and 6.0 2015-12-01 has a security vulnerability in its implementation, which can be exploited by remote attackers to gain elevated privileges via a constructed application...

Android Security Restriction Bypass Vulnerability (CNVD-2015-06576)

Android is an operating system based on the Linux open kernel, announced on November 5, 2007 by Google Inc. for cell phones. A security restriction bypass vulnerability exists in LMY48I, a version of Android prior to 5.1.1. Allows an attacker to trigger a faulty process load via a crafted...

Android Integer Overflow Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An integer overflow exists in the 'GraphicBuffer::unflatten' function in the platform/frameworks/native/libs/ui/GraphicBuffer.cpp file in Android 5.0 and earlier versions...