Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CNVD
CNVDadded 2026/03/09 12:0 a.m.1 views

Google Android elevation of privilege vulnerability (CNVD-2026-13145)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability, which is caused by a possible way to bypass the WRITEEXTERNALSTORAGE privilege due to a lack of privilege checking in multiple functions of...

7.8CVSS5.8AI score0.00003EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 9:36 a.m.6 views

CVE-2024-34721

In ensureFileColumns of MediaProvider.java, there is a possible disclosure of files owned by another user due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

6.2CVSS6.3AI score0.00029EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2021-26020

Malware in sbrugna...

7.8CVSS7.6AI score0.00011EPSS
Exploits0References2
NVD
NVDadded 2024/11/13 6:15 p.m.15 views

CVE-2024-43089

In updateInternal of MediaProvider.java , there is a possible access of another app's files due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS0.00061EPSS
Exploits0References2
CVE
CVEadded 2024/11/13 5:25 p.m.106 views

CVE-2024-43089

CVE-2024-43089 affects the Android MediaProvider component. The root cause is a missing permission check in the MediaProvider.updateInternal method, which can allow an attacker to access another app’s files and achieve local elevation of privilege. The impact is limited to local privilege escalat...

7.8CVSS7.1AI score0.00061EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2024/07/09 8:11 p.m.15 views

CVE-2024-34721

In ensureFileColumns of MediaProvider.java, there is a possible disclosure of files owned by another user due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

6.3AI score0.00029EPSS
Exploits0References2
Prion
Prionadded 2022/09/13 8:15 p.m.11 views

Path traversal

In checkAccess of MediaProvider.java, there is a possible file deletion due to a path traversal error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12...

4.3CVSS7.7AI score0.00012EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2021/03/10 3:57 p.m.35 views

CVE-2021-0376

CVE-2021-0376 affects Android 11 via MediaProvider.java (checkUriPermission) with a permissions bypass that enables local escalation of privilege without extra execution privileges. The vulnerability is described as an Elevation of Privilege (EoP) issue; affected component is Media framework/Andr...

7.8CVSS7.7AI score0.00012EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder