3774 matches found
CVE-2023-21236
In aocservicesetreadblocked of aoc.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...
PT-2023-17949 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible out of bounds read in the BuildGetRadioNode function of protocolmiscbulider.cpp due to improper input validation. This could lead to local information disclosure from the modem,...
CVE-2023-21223
In LPPConvertGNSSDataBitAssistance of LPPCommonUtil.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
PT-2023-17951 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a heap buffer overflow in the encode function of miscdata.cpp, which could lead to a possible out of bounds read. This might result in local information disclosure, requiring System executio...
PT-2023-18006 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue involves the possible use of unencrypted transport over cellular networks due to an insecure default value, which could lead to remote information disclosure without requiring additional execution...
CVE-2023-21147
In lwisi2cdevicedisable of lwisdevicei2c.c, there is a possible UAF due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...
CVE-2023-21147
In lwisi2cdevicedisable of lwisdevicei2c.c, there is a possible UAF due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...
CVE-2023-21157
In encode of wlandata.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
PT-2023-17858 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a heap buffer overflow in the cd CodeMsg function of cd codec.c, which could lead to remote code execution without requiring additional execution privileges. User interaction is not necessar...
PT-2023-17947 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible out of bounds read in the StoreAdbSerialNumber of protocolmiscbuilder.cpp due to a missing bounds check. This could lead to local information disclosure with System execution...
CVE-2023-21225
there is a possible way to bypass the protected confirmation screen due to Failure to lock display power. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...
PT-2023-17953 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a heap buffer overflow in the BuildSetTcsFci function of protocolmiscbuilder.cpp, which could lead to a possible out of bounds read. This may result in local information disclosure without...
CVE-2023-21219
there is a possible use of unencrypted transport over cellular networks due to an insecure default value. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroi...
CVE-2023-21156
In BuildGetRadioNode of protocolmiscbulider.cpp, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure from the modem with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersion...
PT-2023-18007 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue involves the possible use of unencrypted transport over cellular networks due to an insecure default value, potentially leading to remote information disclosure without requiring additional execution...
CVE-2023-21224
In ssProcessReturnResultComponent of ssMmConManagement.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions...
CVE-2023-21066
In cdCodeMsg of cdcodec.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
PT-2023-17942 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android versions Android kernel Description: The issue is related to a missing permission check in the registerGsmaServiceIntentReceiver function of ShannonRcsService.java. This could allow for the activation or deactivation of the RCS servic...
PT-2023-17939 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android versions Android kernel Description: The issue is related to a use after free condition that could corrupt memory, potentially leading to local escalation of privilege. System execution privileges are needed for exploitation, and user...
PT-2023-17943 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible out of bounds read in the handle set parameters ctrl function of hal socket.c due to an incorrect bounds check. This could lead to local information disclosure, requiring System...