CVE-2026-20446

In sec boot, there is a possible out of bounds write due to an integer overflow. This could lead to local denial of service, if an attacker has physical access to the device, with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09963054; Issue ID:...

EUVD-2026-5141

In wlan STA driver, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00464377; Issue ID: MSV-4905...

CVE-2023-45773

In multiple functions of btmblegap.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation...

CVE-2021-0303

In dispatchGraphTerminationMessage of packages/services/Car/computepipe/runner/graph/StreamSetObserver.cpp, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for...

CVE-2021-0398

In bindServiceLocked of ActiveServices.java, there is a possible foreground service launch due to a confused deputy. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android...

CVE-2021-0322

In onCreate of SlicePermissionActivity.java, there is a possible misleading string displayed due to improper input validation. This could lead to local information disclosure with User execution privileges needed. User interaction is needed for exploitation.Product: Android; Versions: Android-10,...

CVE-2021-0959

In jitmemoryregion.cc, there is a possible bypass of memory restrictions due to a logic error in the code. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12Android ID:...

CVE-2019-2191

In LG's LAF component, there is a possible leak of information in a protected disk partition due to a missing bounds check. This could lead to local information disclosure via USB with User execution privileges needed. User interaction is not required for exploitation.Product: AndroidVersions:...

ASB-A-376461726

In notifyTimeout of CallRedirectionProcessor.java, there is a possible persistent connection due to improper input validation. This could lead to local escalation of privilege and background activity launches with User execution privileges needed. User interaction is not needed for exploitation...

CVE-2025-20733

CVE-2025-20733 affects the WLAN AP driver (Aruba MediaTek-based). The issue is an out-of-bounds write caused by an incorrect bounds check, enabling local privilege escalation with user privileges required and no user interaction. Patch WCNCR00441509 (MSV-4138) mitigates this; vendor advisories an...

EUVD-2019-11851

Malware in sbrugna...

EUVD-2020-1912

Malware in sbrugna...

EUVD-2020-1920

Malware in sbrugna...

EUVD-2020-1898

Malware in sbrugna...

EUVD-2020-1901

Malware in sbrugna...

EUVD-2020-1899

Malware in sbrugna...

EUVD-2020-1881

Malware in sbrugna...

EUVD-2020-1798

Malware in sbrugna...

EUVD-2020-1800

Malware in sbrugna...

EUVD-2020-1807

Malware in sbrugna...