CVE-2019-2221

In hasActivityInVisibleTask of WindowProcessController.java there’s a possible bypass of user interaction requirements due to incorrect handling of top activities in INITIALIZING state. This could lead to local escalation of privilege with no additional execution privileges needed. User interacti...

CVE-2019-2070

In libxaac, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-117883804...

CVE-2020-0146

In btuhcifhardwareerrorevt of btuhcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User interaction is not needed for exploitation.Product:...

CVE-2019-9365

In Bluetooth, there is a possible deserialization error due to missing string validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-109838537...

CVE-2019-9474

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-10 Android ID: A-79996267...

CVE-2019-9313

In libstagefright, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112005441...

CVE-2019-9241

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-121036603...

CVE-2019-9309

In NFC, there is a possible out of bounds write due to a missing bounds check. This could lead to a to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-117985575...

Google Android 安全特征问题漏洞

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An information disclosure vulnerability exists in the System component of Google Android version 10. No details of the vulnerability are provided at this time...

Google Android Framework Information Disclosure Vulnerability (CNVD-2020-44372)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An information disclosure vulnerability exists in the Framework component of Google Android 10, which can be exploited by attackers to obtain information...

Google Android Framework Remote Code Execution Vulnerability (CNVD-2020-45107)

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA, of which Framework is a component of the Android framework. A security vulnerability exists in Framework in Android version 10. An attacker can exploit the vulnerability to execute code...

CVE-2020-0141

In OutputBuffersArray::realloc of CCodecBuffers.cpp, there is a possible heap disclosure due to a race condition. This could lead to remote information disclosure with System execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID:...

Google Android System elevation of privilege vulnerability (CNVD-2020-32933)

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. System is one of the system components. A security vulnerability exists in System in Android version 10. The vulnerability can be exploited by an attacker to elevate privileges...

Google Android Framework Privilege Bypass Vulnerability (CNVD-2020-46321)

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA, of which Framework is a component of the Android framework. A security vulnerability exists in Framework in Android version 10. An attacker can exploit the vulnerability to elevate privileges...

Google Android Media Framework Out-of-Bounds Read Vulnerability

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. Media Framework is one of the multimedia development frameworks. A security vulnerability exists in Media Framework in Android version 10. The vulnerability can be exploited by an...

Google Android Media Framework Resource Management Error Vulnerability (CNVD-2020-36934)

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. Media Framework is one of the multimedia development frameworks. A security vulnerability exists in Media Framework in Android version 10. An attacker could exploit this vulnerability t...

Google Android runtime elevation of privilege vulnerability (CNVD-2020-46269)

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. Android runtime is one of the runtime environments. A security vulnerability exists in Android runtime in Android version 10. The vulnerability can be exploited by an attacker to elevat...

Google Android Media Framework Input Validation Error Vulnerability (CNVD-2020-34462)

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. Media Framework is one of the multimedia development frameworks. A security vulnerability exists in Media Framework in Android version 10.0. An attacker could exploit this vulnerability...

Google Android Media Framework Input Validation Error Vulnerability (CNVD-2020-34463)

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. Media Framework is one of the multimedia development frameworks. A security vulnerability exists in Media Framework in Android version 10.0. An attacker could exploit this vulnerability...

Google Android Media Framework Resource Management Error Vulnerability (CNVD-2020-46319)

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. Media Framework is one of the multimedia development frameworks. A security vulnerability exists in Media Framework in Android version 10. The vulnerability can be exploited by an...