3774 matches found
CVE-2022-20598
In secmediaprotect of media.c, there is a possible EoP due to an integer overflow. This could lead to local escalation of privilege of secure mode MFC Core with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndro...
CVE-2022-20605
In SAECOMMCopyBufferBytes of SAECOMMUtility.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Androi...
CVE-2022-42526
In ConvertUtf8ToUcs2 of radiohalutils.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndro...
CVE-2022-20606
In SAEMMMiningCodecTableWithMsgIE of SAEMMRadioMessageCodec.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
CVE-2022-20579
In RadioImpl::setCdmaBroadcastConfig of rilservicelegacy.cpp, there is a possible stack clash leading to memory corruption. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...
PT-2022-14816 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to an incorrect bounds check in Pixel cellular firmware, which could lead to a possible out of bounds read. This may result in local information disclosure without requiring additional executio...
CVE-2022-42516
In ProtocolSimBuilderLegacy::BuildSimGetGbaAuth of protocolsimbuilderlegacy.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product:...
CVE-2022-20567
In pppol2tpcreate of l2tpppp.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
PT-2022-26493 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible mitigation bypass due to Permissive Memory Allocation in the mmu map for fw function of gs ldfw load.c. This could lead to local escalation of privilege with no additional executi...
PT-2022-14815 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a missing bounds check in the Pixel cellular firmware, which could lead to an out of bounds write. This might result in remote code execution, with LTE authentication required for...
PT-2022-14778 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel versions affected versions not specified Description: The issue concerns the Android kernel. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world...
PT-2022-26469 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible out of bounds write in the CallDialReqData::encode function of callreqdata.cpp due to a missing bounds check. This could lead to local escalation of privilege with System executio...
PT-2022-26463 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible out of bounds write in the ProtocolMiscBuilder::BuildSetLinkCapaReportCriteria function due to a missing bounds check. This could lead to local escalation of privilege, requiring...
CVE-2022-20583
CVE-2022-20583 affects the Android kernel DRM firmware path: in function ppmp_unprotect_mfcfw_buf there is an out-of-bounds write due to improper input validation. This could enable local escalation of privilege in S-EL1 with System privileges granted, and exploitation is described as not requiri...
PT-2022-14798 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a logic error in the code of ppmpu set in ppmpu.c, which could lead to local information disclosure without requiring additional execution privileges. User interaction is not necessary for...
PT-2022-14810 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel versions affected versions not specified Description: The issue concerns the Android kernel. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world...
PT-2022-14779 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel versions affected versions not specified Description: The issue is related to a use after free in the extract metadata function of dm-android-verity.c, which could lead to corruption of kernel memory. This might result in local...
PT-2022-26473 · Google · Android Kernel
Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible out of bounds read in the VsimOperationDataExt::encode function of vsimdata.cpp due to a missing bounds check. This could lead to local information disclosure, requiring System...
CVE-2022-20589
In validvasecbufcheck of drmaccesscontrol.c, there is a possible ID due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
CVE-2022-42534
CVE-2022-42534 affects the Android kernel component, specifically the trusty_ffa_mem_reclaim path in shared-mem-smcall.c. The issue is a privilege-escalation vulnerability caused by improper input validation, enabling local elevation of privilege with no additional execution privileges required, ...