The vulnerability of the System component of the Android operating system, allowing a hacker to execute arbitrary code

The vulnerability of the System component of the Android operating system exists due to insufficient checking of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Design/Logic Flaw

The vulnerability is an intent redirection in LG ThinQ Service "com.lge.lms2" in the "com/lge/lms/things/ui/notification/NotificationManager.java" file. This vulnerability could be exploited by a third-party app installed on an LG device by sending a broadcast with the action...

Google Releases Android Patch Update for 3 Actively Exploited Vulnerabilities

Google has released its monthly security updates for the Android operating system, addressing 46 new software vulnerabilities. Among these, three vulnerabilities have been identified as actively exploited in targeted attacks. One of the vulnerabilities tracked as CVE-2023-26083 is a memory leak...

PT-2023-12028 · Imagination Technologies +1 · Powervr +1

Name of the Vulnerable Software and Affected Versions: Android SoC versions affected versions not specified Description: A missing size check in the PVRSRVBridgeRGXKickSync of the PowerVR kernel driver may cause an integer overflow, leading to out-of-bounds heap access. This could result in local...

The vulnerability of the System component of the Android operating system, allowing a hacker to execute arbitrary code

The vulnerability of the System component of the Android operating system exists due to insufficient checking of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the System component of the Android operating system, allowing a hacker to execute arbitrary code

The vulnerability of the System component of the Android operating system exists due to insufficient checking of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

PT-2023-1858 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-11 through Android-13 Description: The issue is caused by an incorrect bounds check in the SDP AddAttribute function of sdp db.cc, leading to a possible out of bounds write. This could result in remote code execution...

ASB-A-234441463

In setImpl of AlarmManagerService.java, there is a possible way to put a device into a boot loop due to an uncaught exception. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2022-20432

There is an missing authorization issue in the system service. Since the component does not have permission check and permission protection,, resulting in Local Elevation of privilege.Product: AndroidVersions: Android SoCAndroid ID: A-242221899...

PT-2022-14658 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions affected versions not specified Description: The issue is related to a missing authorization in the system service, which lacks a permission check. This results in a Local Elevation of Privilege. Recommendations: At the momen...

PT-2022-14654 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android SoC versions affected versions not specified Description: The issue is related to a missing authorization in the system service, which lacks a permission check. This results in a Local Elevation of Privilege. Recommendations: At the...

PT-2022-19245 · Bytedance +1 · Tiktok +1

Name of the Vulnerable Software and Affected Versions: TikTok application before 23.7.3 for Android Description: The issue allows account takeover through a crafted URL that can force the com.zhiliaoapp.musically WebView to load an arbitrary website, potentially leveraging an attached JavaScript...

The vulnerability of the Android EMUI operating system’s shell, related to improper memory release before deleting the last link, allows a hacker to trigger a service failure.

The vulnerability of the Android EMUI operating system’s shell is related to the improper release of memory before deleting the last link. Exploiting this vulnerability can allow a malicious actor to cause service failure remotely...

Google Android 输入验证错误漏洞

Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Alliance OHA. a denial-of-service vulnerability exists in the System component of Google Android versions 9, 10 and 11, which could be exploited by attackers to cause a denial of service...

Huawei HarmonyOS Wearables 安全漏洞

Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Alliance OHA for short, and an information disclosure vulnerability exists in the System component of Google Android. An attacker could use this vulnerability to obtain sensitive information...

Google Android 安全漏洞

Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Alliance OHA for short, and an information disclosure vulnerability exists in the System component of Google Android. An attacker could use this vulnerability to obtain sensitive information...

Google Android System elevation of privilege vulnerability (CNVD-2021-52342)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An elevation of privilege vulnerability exists in the System component of Google Android versions 8.1, 9, 10, and 11, which can be exploited by an attacker to cause...

Google Android System Information Disclosure Vulnerability (CNVD-2021-52337)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An information disclosure vulnerability exists in the System component of Google Android versions 8.1 and 9. No details of the vulnerability are provided at this ti...

Google Android System Information Disclosure Vulnerability (CNVD-2021-52336)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An information disclosure vulnerability exists in the System component of Google Android versions 8.1, 9, 10, and 11, which can be exploited by an attacker to cause...

Google Android System Information Disclosure Vulnerability (CNVD-2021-52333)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An information disclosure vulnerability exists in the System component of Google Android versions 8.1, 9, 10, and 11, which can be exploited by an attacker to obtai...