CVE-2023-21071

In dhdprotioctcmpltprocess of dhdmsgbuf.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

CVE-2023-21058

In lcsmSendRrAcquiAssist of lcsmbcmassist.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

CVE-2023-21050

In loadpngimage of ExynosHWCHelper.cpp, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndro...

CVE-2023-21038

In cs40l2xcptriggerqueueshow of cs40l2x.c, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

CVE-2022-42500

In OEMOnRequest of sced.cpp, there is a possible shell command execution due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

CVE-2023-21043

In TBD of TBD, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-239872581References: N/...

CVE-2023-21050

In loadpngimage of ExynosHWCHelper.cpp, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndro...

CVE-2023-21062

In DoSetTempEcc of imsservice.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

PT-2023-17864 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible out of bounds write in the dhd prot ioctcmplt process function of dhd msgbuf.c due to improper input validation. This could lead to local escalation of privilege, requiring System...

PT-2023-17861 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible out of bounds write in the wl update hidden ap ie function of wl cfgscan.c due to a missing bounds check. This could lead to local escalation of privilege with System execution...

PT-2023-17843 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a missing bounds check in the setToExternal function of ril external client.cpp, which could lead to a possible out of bounds write. This might result in local escalation of privilege,...

PT-2023-17871 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a heap buffer overflow in the rtt unpack xtlv cbfn function of dhd rtt.c, which could lead to a possible out of bounds write. This may result in local escalation of privilege, requiring Syst...

PT-2023-17846 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible use after free due to a race condition in the dit hal ioctl function of dit.c. This could lead to local escalation of privilege with System execution privileges needed. User...

CVE-2022-42498

In Pixel cellular firmware, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

CVE-2023-21047

In ConvertToHalMetadata of aidlutils.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid I...

CVE-2023-21054

In EUTRANLCSConvertLCSMOLRReq of LPPCommonUtil.c, there is a possible out of bounds write due to a logic error in the code. This could lead to remote code execution with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

PT-2023-17845 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is caused by a logic error in the code of EUTRAN LCS ConvertLCS MOLRReq in LPP CommonUtil.c, leading to a possible out of bounds write. This could result in remote code execution with System execution...

CVE-2023-21075

CVE-2023-21075 affects the Android kernel; the vulnerability is in get_svc_hash inside nan.cpp, caused by an out-of-bounds write due to a heap buffer overflow. The impact is local elevation of privilege with System-level execution privileges required; exploitation is possible without user interac...

CVE-2023-21053

In smsExtractCbLanguage of smsCellBroadcast.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

CVE-2023-21079

In rttunpackxtlvcbfn of dhdrtt.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...