Lucene search
+L

157 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 8:13 p.m.16 views

CVE-2021-39799

In AttributionSource of AttributionSource.java, there is a possible permission bypass due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

7.8CVSS7.1AI score0.00115EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:42 p.m.6 views

CVE-2021-39676

In writeThrowable of AndroidFuture.java, there is a possible parcel serialization/deserialization mismatch due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.8CVSS7.7AI score0.00123EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:23 p.m.4 views

CVE-2021-23957

Navigations through the Android-specific intent URL scheme could have been misused to escape iframe sandbox. Note: This issue only affected Firefox for Android. Other operating systems are unaffected. This vulnerability affects Firefox 85...

7.4CVSS6.3AI score0.00793EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:0 p.m.8 views

CVE-2020-0451

In sbrDecoderAssignQmfChannels2SbrChannels of sbrdecoder.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:...

9.3CVSS8AI score0.0187EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:0 p.m.11 views

CVE-2020-0415

In various locations in SystemUI, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure of contact data with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9...

5.5CVSS6.2AI score0.00168EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:59 p.m.12 views

CVE-2020-0283

There is a possible out of bounds write due to a missing bounds check.Product: AndroidVersions: Android SoCAndroid ID: A-163008257...

9.4CVSS7AI score0.0054EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:57 p.m.8 views

CVE-2020-0078

In releaseSecureStops of DrmPlugin.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9...

7.8CVSS7.2AI score0.00156EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:9 p.m.14 views

CVE-2020-0456

There is a possible out of bounds write due to a missing bounds check.Product: AndroidVersions: Android SoCAndroid ID: A-170378843...

9.8CVSS7AI score0.00654EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:2 a.m.8 views

CVE-2017-10709

The lockscreen on Elephone P9000 devices running Android 6.0 allows physically proximate attackers to bypass a wrong-PIN lockout feature by pressing backspace after each PIN guess...

7.2CVSS7AI score0.00335EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:42 a.m.8 views

CVE-2017-17551

The Backup and Restore feature in Mobotap Dolphin Browser for Android 12.0.2 suffers from an arbitrary file write vulnerability when attempting to restore browser settings from a malicious Dolphin Browser backup file. This arbitrary file write vulnerability allows an attacker to overwrite a...

8.8CVSS6.8AI score0.00956EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:23 a.m.10 views

CVE-2019-9355

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-115903122...

7.5CVSS6.5AI score0.00804EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:21 a.m.6 views

CVE-2019-15351

The Tecno Camon Android device with a build fingerprint of TECNO/H622/TECNO-ID5b:8.1.0/O11019/G-180829V31:user/release-keys contains a pre-installed platform app with a package name of com.lovelyfont.defcontainer versionCode=7, versionName=7.0.11. This app contains an exported service named...

7.8CVSS7.1AI score0.00387EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:57 a.m.8 views

CVE-2019-9600

The Olive Tree FTP Server aka com.theolivetree.ftpserver application through 1.32 for Android allows remote attackers to cause a denial of service via a client that makes many connection attempts and drops certain packets...

7.5CVSS7AI score0.08297EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:57 a.m.3 views

CVE-2019-9388

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure in the Bluetooth service with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Androi...

7.5CVSS6.5AI score0.00804EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:57 a.m.5 views

CVE-2019-9363

In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-123584306...

8.8CVSS7.8AI score0.00714EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:32 a.m.7 views

CVE-2019-2198

In Download Provider, there is a possible SQL injection vulnerability. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID:...

5.5CVSS7.1AI score0.00403EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:57 a.m.8 views

CVE-2019-2036

In okToConnect of HidHostService.java, there is a possible permission bypass due to an incorrect state check. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0...

10CVSS7.4AI score0.02038EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:41 a.m.4 views

CVE-2019-17395

In the Rapid Gator application 0.7.1 for Android, the username and password are stored in the log during authentication, and may be available to attackers via logcat...

9.8CVSS6.9AI score0.01332EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:21 a.m.6 views

CVE-2018-17108

The SBIbuddy aka com.sbi.erupee application 1.41 and 1.42 for Android might allow attackers to perform Account Takeover attacks by intercepting a security-question response during the initial configuration of the application...

8.8CVSS7AI score0.01146EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/03/17 12:31 a.m.29 views

CVE-2025-2355 BlackVue App API Endpoint credentials storage

A vulnerability was found in BlackVue App 3.65 on Android and classified as problematic. Affected by this issue is some unknown functionality of the component API Endpoint Handler. The manipulation of the argument BCSTOKEN/SECRETKEY leads to unprotected storage of credentials. Local access is...

4.8CVSS0.0015EPSS
Exploits0References4
Rows per page
Query Builder