CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

353 matches found

Packet Storm News•added 2026/06/05 12:0 a.m.•4 views

Lost in Migration: Exposing Android Framework Vulnerabilities in Parallel Java-Kotlin Implementations

Android has adopted Kotlin alongside Java across apps and core system components. During this shift, we observe parallel implementations in the Android Open Source Project AOSP where the same component is implemented in both Java and Kotlin. In principle, their functional purposes are identical. ...

5.6AI score

Exploits0

CISA•added 2026/06/02 12:0 p.m.•15 views

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2022-0492link is external Linux Kernel Improper Authentication Vulnerability CVE-2025-48595link is external Android Framework Integer Overflow Vulnerability The...

8.4CVSS7AI score0.05495EPSS

In wildExploits13References7

CISA KEV Catalog•added 2026/06/02 12:0 a.m.•16 views

Android Framework Integer Overflow Vulnerability

Android Framework contains an integer overflow vulnerability that allows for code execution that could allow for local privilege escalation...

8.4CVSS6.2AI score0.0015EPSS

In wildExploits1

Positive Technologies•added 2026/03/04 12:0 a.m.•6 views

PT-2026-23031

Mattermost fails to use consistent error responses when handling the /mute command in github.com/mattermost/mattermost-server. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing...

4.3CVSS5.8AI score0.00184EPSS

Exploits0References10

RedhatCVE•added 2026/01/09 12:23 p.m.•7 views

CVE-2018-14997

The Leagoo P1 Android device with a build fingerprint of sp7731c1h1032v4bird:6.0/MRA58K/android.20170629.214736:user/release-keys contains the android framework i.e., systemserver with a package name of android that has been modified by Leagoo or another entity in the supply chain. The systemserv...

5.5CVSS6.5AI score0.00389EPSS

Exploits0References1

CISA KEV Catalog•added 2025/12/02 12:0 a.m.•6 views

Android Framework Privilege Escalation Vulnerability

Android Framework contains an unspecified vulnerability that allows for privilege escalation...

7.8CVSS7AI score0.00215EPSS

In wildExploits0

CISA KEV Catalog•added 2025/12/02 12:0 a.m.•10 views

Android Framework Information Disclosure Vulnerability

Android Framework contains an unspecified vulnerability that allows for information disclosure...

5.5CVSS6.7AI score0.00231EPSS

In wildExploits0

Positive Technologies•added 2025/10/23 12:0 a.m.•2 views

PT-2025-43462

Name of the Vulnerable Software and Affected Versions Android affected versions not specified Description A security issue exists in the Android Framework that could allow a remote attacker to escalate privileges. The issue involves a permissions bypass that may allow launching activities from th...

7.8CVSS8.1AI score0.00215EPSS

Exploits0References74

Positive Technologies•added 2025/10/23 12:0 a.m.•3 views

PT-2025-43506

Name of the Vulnerable Software and Affected Versions Android affected versions not specified Description The issue resides in the hasAccountsOnAnyUser function within DevicePolicyManagerService.java. A logic error in the code allows for the addition of a Device Owner after provisioning. This can...

5.5CVSS8.2AI score0.00231EPSS

Exploits0References80