CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 5 days ago•5 views

Google Android security vulnerabilities

Google Android is an open-source operating system based on Linux, developed by Google Inc. There is a security vulnerability in Google Android, which stems from missing permission checks for multiple functions in AppOpsService.java. This vulnerability may lead to the disclosure of local informati...

3.3CVSS5.8AI score0.00004EPSS

RedhatCVE•added 2026/03/04 1:57 a.m.•2 views

CVE-2026-0015

In multiple locations of AppOpsService.java, there is a possible persistent denial of service due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

NVD•added 2026/03/02 7:16 p.m.•2 views

CVE-2026-0015

6.2CVSS0.00002EPSS

NVD•added 2026/03/02 7:16 p.m.•4 views

CVE-2026-0014

In isPackageNullOrSystem of AppOpsService.java, there is a possible persistent denial of service due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

6.2CVSS0.00002EPSS

ATTACKERKB•added 2026/03/02 6:42 p.m.•1 views

CVE-2026-0015

Exploits0References3Affected Software1

CVE•added 2026/03/02 6:42 p.m.•9 views

CVE-2026-0015

CVE-2026-0015 affects Android components, notably multiple locations in AppOpsService.java where improper input validation can cause a persistent, local Denial of Service . Exploitation requires no user interaction and does not grant additional privileges. The Red Hat/NCSC/NVD entries corroborate...

Exploits0References1Affected Software1

EUVD•added 2026/03/02 6:42 p.m.•1 views

EUVD-2026-9232

OSV•added 2026/03/01 12:0 a.m.•4 views

ASB-A-443742082

OSV•added 2025/12/01 12:0 a.m.•5 views

ASB-A-417987184

In verifyAndGetBypass of AppOpsService.java, there is a possible method for a malicious app to prevent dialing emergency services under limited circumstances due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is...

5.5CVSS5.9AI score0.00009EPSS

Positive Technologies•added 2025/10/23 12:0 a.m.•2 views

PT-2025-43478

1.7CVSS5.9AI score0.00009EPSS

Exploits0References6

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-25502

Malicious code in bioql PyPI...

5.5CVSS5.5AI score0.00036EPSS

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-26806

Malicious code in bioql PyPI...

7.3CVSS6.5AI score0.00009EPSS

Exploits0References6

Cvelist•added 2025/09/04 6:34 p.m.•4 views

CVE-2025-48559

In multiple functions of AppOpsService.java, there is a possible add a large amount of app ops due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

0.0001EPSS

Vulnrichment•added 2025/09/04 6:34 p.m.•1 views

CVE-2025-48559

5.6AI score0.0001EPSS

NVD•added 2025/09/04 6:15 p.m.•2 views

CVE-2025-26429

In collectOps of AppOpsService.java, there is a possible way to cause permanent DoS due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS0.0001EPSS

CVE•added 2025/09/04 5:11 p.m.•426 views

CVE-2025-26429

CVE-2025-26429 is an Android vulnerability where the collectOps path in AppOpsService.java allows a local DoS due to improper input validation. Exploitation is local with no user interaction and no extra privileges required. The connected advisories reference Android security bulletins and vendor...

5.5CVSS5.6AI score0.0001EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2025/09/04 5:11 p.m.•1 views

CVE-2025-26429

5.6AI score0.0001EPSS