CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

52 matches found

OSV•added 2022/01/01 12:0 a.m.•21 views

ASB-A-203847542

In ipcSetDataReference of Parcel.cpp, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.8AI score0.00015EPSS

Exploits0References2

NVD•added 2021/08/17 7:15 p.m.•7 views

CVE-2021-0584

In verifyBufferObject of Parcel.cpp, there is a possible out of bounds read due to an improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11...

5.5CVSS0.00031EPSS

Exploits0References1

Vulnrichment•added 2021/08/17 6:28 p.m.•1 views

CVE-2021-0584

5.8AI score0.00031EPSS

Exploits0References1

Cvelist•added 2021/08/17 6:28 p.m.•11 views

CVE-2021-0584

5.4AI score0.00031EPSS

Exploits0References1

CVE•added 2021/08/17 6:28 p.m.•127 views

CVE-2021-0584

CVE-2021-0584 relates to an out-of-bounds read in Android’s Parcel.cpp (verifyBufferObject), caused by improper input validation. The issue can enable local information disclosure without additional privileges or user interaction. Affected Android versions include 8.1, 9, 10, and 11. The descript...

5.5CVSS5AI score0.00031EPSS

Exploits0References1Affected Software1

CNVD•added 2021/08/05 12:0 a.m.•12 views

Google Android Parcel.cpp information disclosure vulnerability

Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Alliance OHA. Google Android Parcel.cpp is vulnerable to information disclosure. An attacker could use this vulnerability to obtain sensitive information...

5.5CVSS1.6AI score0.00031EPSS

Exploits0References1

OSV•added 2021/08/01 12:0 a.m.•20 views

ASB-A-179289794

5.5CVSS5.2AI score0.00031EPSS

Exploits0References2

Prion•added 2021/03/10 4:15 p.m.•11 views

Out-of-bounds

In androidosParcelreadString8 of androidosParcel.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

2.1CVSS5AI score0.00079EPSS

Exploits0References1Affected Software1

NVD•added 2020/12/15 5:15 p.m.•16 views

CVE-2020-27044

In restartWrite of Parcel.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-15706656...

7.8CVSS8.4AI score0.00018EPSS

Exploits0References1

Prion•added 2020/12/15 5:15 p.m.•17 views

Memory corruption

4.6CVSS8.3AI score0.00018EPSS

Exploits0References1Affected Software1

CVE•added 2020/12/15 4:5 p.m.•40 views

CVE-2020-27044

CVE-2020-27044 affects Android 11 in Parcel.cpp, restartWrite path, where a use-after-free leads to memory corruption. The issue is described as a local elevation of privilege without extra execution privileges required; user interaction is not needed. The vulnerability is reported with a high ba...

7.8CVSS8.3AI score0.00018EPSS

Exploits0References1Affected Software1

Cvelist•added 2020/12/15 4:5 p.m.•15 views

CVE-2020-27044

8.4AI score0.00018EPSS

Exploits0References1

CVE•added 2020/06/11 2:43 p.m.•36 views

CVE-2020-0136

CVE-2020-0136 affects Android 10, with an out-of-bounds write in Parcel.cpp caused by an integer overflow, enabling local privilege escalation in the system server without extra execution privileges or user interaction. Documents consistently describe the issue as a local elevation of privilege v...

7.8CVSS8.2AI score0.00015EPSS

Exploits0References1Affected Software1

NVD•added 2020/03/15 10:15 p.m.•11 views

CVE-2020-0086

In readCString of Parcel.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to arbitrary code execution if IntSan were not enabled, which it is by default. No additional execution privileges are required. User interaction is not needed for exploitation...

9.8CVSS9.3AI score0.00187EPSS

Exploits0References1

Prion•added 2020/03/15 10:15 p.m.•12 views

Integer overflow

6.8CVSS9.2AI score0.00187EPSS

Exploits0References1Affected Software1

Cvelist•added 2020/03/15 9:15 p.m.•12 views

CVE-2020-0086

9.5AI score0.00187EPSS

Exploits0References1

NVD•added 2020/02/13 3:15 p.m.•17 views

CVE-2020-0026

In Parcel::continueWrite of Parcel.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1...

7.8CVSS7.9AI score0.00037EPSS

Exploits0References1

Prion•added 2020/02/13 3:15 p.m.•16 views

Memory corruption

7.2CVSS8.2AI score0.00037EPSS

Exploits0References1Affected Software1

Cvelist•added 2020/02/13 2:22 p.m.•15 views

CVE-2020-0026

8.1AI score0.00037EPSS

Exploits0References1

CVE•added 2020/02/13 2:22 p.m.•44 views

CVE-2020-0026

CVE-2020-0026 affects Android 8.0–10 via Parcel::continueWrite in Parcel.cpp, where a use-after-free causes memory corruption and local elevation of privilege without user interaction. Documented impact is elevated privileges in a local context; no remote code execution details are provided. Affe...

7.8CVSS7.8AI score0.00037EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by