Lucene search

K
GoogleAndroid

7550 matches found

CVE
CVE
added 2021/10/06 6:15 p.m.34 views

CVE-2021-25486

Exposure of information vulnerability in ipcdump prior to SMR Oct-2021 Release 1 allows an attacker detect device information via analyzing packet in log.

3.3CVSS4AI score0.00018EPSS
CVE
CVE
added 2021/11/05 3:15 a.m.34 views

CVE-2021-25502

A vulnerability of storing sensitive information insecurely in Property Settings prior to SMR Nov-2021 Release 1 allows attackers to read ESN value without priviledge.

7.9CVSS5.2AI score0.0001EPSS
CVE
CVE
added 2021/12/15 7:15 p.m.34 views

CVE-2021-39643

In ic_startRetrieveEntryValue of acropora/app/identity/ic.c, there is a possible bypass of defense-in-depth due to missing validation of the return value. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Produc...

6.7CVSS6.7AI score0.00017EPSS
CVE
CVE
added 2021/12/15 7:15 p.m.34 views

CVE-2021-39646

Product: AndroidVersions: Android kernelAndroid ID: A-201537251References: N/A

7.5CVSS7.4AI score0.00123EPSS
CVE
CVE
added 2022/01/14 8:15 p.m.34 views

CVE-2021-39683

In copy_from_mbox of sss_ice_util.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A...

7.2CVSS6.7AI score0.00012EPSS
CVE
CVE
added 2022/08/12 3:15 p.m.34 views

CVE-2022-20308

In hostapd, there is a possible insecure configuration due to an insecure default value. This could lead to remote denial of service of the wifi hotspot with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-...

7.5CVSS7.4AI score0.0197EPSS
CVE
CVE
added 2023/02/12 4:15 a.m.34 views

CVE-2022-38675

In gpu driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.

5.5CVSS5.4AI score0.00018EPSS
CVE
CVE
added 2022/10/14 7:15 p.m.34 views

CVE-2022-39122

In sensor driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.

5.5CVSS5.4AI score0.00028EPSS
CVE
CVE
added 2022/10/07 3:15 p.m.34 views

CVE-2022-39854

Improper protection in IOMMU prior to SMR Oct-2022 Release 1 allows unauthorized access to secure memory.

7.8CVSS7.5AI score0.00016EPSS
CVE
CVE
added 2023/05/09 2:15 a.m.34 views

CVE-2022-44420

In modem, there is a possible missing verification of HashMME value in Security Mode Command. This could local denial of service with no additional execution privileges.

5.5CVSS5.5AI score0.00016EPSS
CVE
CVE
added 2023/02/12 4:15 a.m.34 views

CVE-2022-44421

In wlan driver, there is a possible missing permission check. This could lead to local In wlan driver, information disclosure.

5.5CVSS5.1AI score0.00036EPSS
CVE
CVE
added 2023/09/04 2:15 a.m.34 views

CVE-2022-47353

In vdsp device, there is a possible system crash due to improper input validation.This could lead to local denial of service with System execution privileges needed

4.4CVSS4.7AI score0.00009EPSS
CVE
CVE
added 2023/05/09 2:15 a.m.34 views

CVE-2022-48232

In FM service , there is a possible missing params check. This could lead to local denial of service in FM service .

5.5CVSS5.3AI score0.00022EPSS
CVE
CVE
added 2023/05/09 2:15 a.m.34 views

CVE-2022-48238

In Image filter, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.

4.4CVSS4.7AI score0.0001EPSS
CVE
CVE
added 2023/05/09 2:15 a.m.34 views

CVE-2022-48386

the apipe driver, there is a possible use after free due to a logic error. This could lead to local denial of service with System execution privileges needed.

4.4CVSS4.8AI score0.0001EPSS
CVE
CVE
added 2023/07/12 9:15 a.m.34 views

CVE-2022-48451

In bluetooth service, there is a possible out of bounds write due to race condition. This could lead to local denial of service with System execution privileges needed.

4.1CVSS4.5AI score0.00008EPSS
CVE
CVE
added 2023/03/07 9:15 p.m.34 views

CVE-2023-20642

In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628586; Issue ID: ALPS07628586.

6.7CVSS6.7AI score0.0002EPSS
CVE
CVE
added 2023/04/06 6:15 p.m.34 views

CVE-2023-20658

In isp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07537393; Issue ID: ALPS07180396.

6.7CVSS6.7AI score0.00011EPSS
CVE
CVE
added 2023/07/04 2:15 a.m.34 views

CVE-2023-20689

In wlan firmware, there is possible system crash due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07664741; Issue ID: ALPS07664741.

7.5CVSS7.4AI score0.01096EPSS
CVE
CVE
added 2023/05/15 10:15 p.m.34 views

CVE-2023-20707

In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628556; Issue ID: ALPS07628556.

6.7CVSS6.7AI score0.00017EPSS
CVE
CVE
added 2023/06/06 1:15 p.m.34 views

CVE-2023-20723

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07843845; Issue ID: ALPS07843845.

6.7CVSS6.6AI score0.00014EPSS
CVE
CVE
added 2023/09/04 3:15 a.m.34 views

CVE-2023-20822

In netdagent, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07944012; Issue ID: ALPS07944012.

6.7CVSS6.7AI score0.0002EPSS
CVE
CVE
added 2023/09/04 3:15 a.m.34 views

CVE-2023-20825

In duraspeed, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privilege needed. User interaction is not needed for exploitation. Patch ID: ALPS07951402; Issue ID: ALPS07951413.

5.5CVSS5.1AI score0.00016EPSS
CVE
CVE
added 2023/09/04 3:15 a.m.34 views

CVE-2023-20833

In keyinstall, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08017756; Issue ID: ALPS08017764.

4.4CVSS4.3AI score0.00017EPSS
CVE
CVE
added 2023/03/24 8:15 p.m.34 views

CVE-2023-20996

In multiple locations, there is a possible way to trigger a persistent reboot loop due to improper input validation. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-24...

5.5CVSS5.4AI score0.00017EPSS
CVE
CVE
added 2023/03/24 8:15 p.m.34 views

CVE-2023-21006

In multiple locations of p2p_iface.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-25...

4.4CVSS4.3AI score0.00015EPSS
CVE
CVE
added 2023/03/24 8:15 p.m.34 views

CVE-2023-21010

In multiple locations of p2p_iface.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-25...

4.4CVSS4.3AI score0.00015EPSS
CVE
CVE
added 2023/03/24 8:15 p.m.34 views

CVE-2023-21022

In BufferBlock of Suballocation.cpp, there is a possible out of bounds write due to memory corruption. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-2...

7.8CVSS7.7AI score0.00015EPSS
CVE
CVE
added 2023/03/24 8:15 p.m.34 views

CVE-2023-21028

In parse_printerAttributes of ipphelper.c, there is a possible out of bounds read due to a string without a null-terminator. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: And...

7.5CVSS7AI score0.00358EPSS
CVE
CVE
added 2023/03/24 8:15 p.m.34 views

CVE-2023-21079

In rtt_unpack_xtlv_cbfn of dhd_rtt.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: ...

6.7CVSS6.8AI score0.00008EPSS
CVE
CVE
added 2023/06/28 6:15 p.m.34 views

CVE-2023-21148

In BuildSetConfig of protocolimsbuilder.cpp, there is a possible out of bounds read due to a missing null check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid I...

4.4CVSS4.3AI score0.00031EPSS
CVE
CVE
added 2023/06/28 6:15 p.m.34 views

CVE-2023-21169

In inviteInternal of p2p_iface.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-274443...

4.4CVSS4.2AI score0.00028EPSS
CVE
CVE
added 2023/06/28 6:15 p.m.34 views

CVE-2023-21182

In Exynos_parsing_user_data_registered_itu_t_t35 of VendorVideoAPI.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVers...

4.4CVSS4.2AI score0.00026EPSS
CVE
CVE
added 2023/06/28 6:15 p.m.34 views

CVE-2023-21188

In btm_ble_update_inq_result of btm_ble_gap.cc, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ...

4.4CVSS4.4AI score0.0002EPSS
CVE
CVE
added 2023/06/28 6:15 p.m.34 views

CVE-2023-21199

In btu_ble_proc_ltk_req of btu_hcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-25...

4.4CVSS4.2AI score0.00023EPSS
CVE
CVE
added 2023/10/30 5:15 p.m.34 views

CVE-2023-21348

In Window Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

3.3CVSS4.4AI score0.00024EPSS
CVE
CVE
added 2023/07/12 9:15 a.m.34 views

CVE-2023-30913

In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

5.5CVSS5.2AI score0.00021EPSS
CVE
CVE
added 2023/12/04 4:15 a.m.34 views

CVE-2023-32849

In cmdq, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08161758; Issue ID: ALPS08161758.

6.7CVSS6.7AI score0.00026EPSS
CVE
CVE
added 2023/07/12 9:15 a.m.34 views

CVE-2023-33903

In FM service, there is a possible missing params check. This could lead to local denial of service with System execution privileges needed.

4.4CVSS4.7AI score0.00019EPSS
CVE
CVE
added 2023/07/12 9:15 a.m.34 views

CVE-2023-33905

In iwnpi server, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.

4.4CVSS4.7AI score0.00011EPSS
CVE
CVE
added 2023/09/04 2:15 a.m.34 views

CVE-2023-33916

In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges

5.5CVSS5.2AI score0.00016EPSS
CVE
CVE
added 2023/07/13 12:15 a.m.34 views

CVE-2023-35694

In DMPixelLogger_ProcessDmCommand of DMPixelLogger.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

7.5CVSS7.1AI score0.00358EPSS
CVE
CVE
added 2023/10/08 4:15 a.m.34 views

CVE-2023-40653

In FW-PackageManager, there is a possible missing permission check. This could lead to local escalation of privilege with System execution privileges needed

6.7CVSS6.7AI score0.00007EPSS
CVE
CVE
added 2023/11/01 10:15 a.m.34 views

CVE-2023-42632

In validationtools, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

5.5CVSS5.2AI score0.00029EPSS
CVE
CVE
added 2023/11/01 10:15 a.m.34 views

CVE-2023-42642

In validationtools, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

5.5CVSS5.2AI score0.00016EPSS
CVE
CVE
added 2024/02/05 6:15 a.m.34 views

CVE-2024-20015

In telephony, there is a possible escalation of privilege due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08441419; Issue ID: ALPS08441419.

7.8CVSS7.7AI score0.00016EPSS
CVE
CVE
added 2024/10/25 11:15 a.m.34 views

CVE-2024-47021

In sms_ExtractCbLanguage of sms_CellBroadcast.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

7.5CVSS6.6AI score0.00058EPSS
CVE
CVE
added 2016/07/11 1:59 a.m.33 views

CVE-2014-9782

drivers/media/platform/msm/camera_v2/sensor/actuator/msm_actuator.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices does not validate direction and step parameters, which allows attackers to gain privileges via a crafted application, aka Android internal bug ...

9.3CVSS7.5AI score0.00071EPSS
CVE
CVE
added 2016/07/11 1:59 a.m.33 views

CVE-2014-9792

arch/arm/mach-msm/ipc_router.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 devices uses an incorrect integer data type, which allows attackers to gain privileges via a crafted application, aka Android internal bug 28769399 and Qualcomm internal bug CR550606.

9.3CVSS7.5AI score0.00145EPSS
CVE
CVE
added 2016/07/11 1:59 a.m.33 views

CVE-2014-9793

platform/msm_shared/mmc.c in the Qualcomm components in Android before 2016-07-05 on Nexus 7 (2013) devices mishandles the power-on write-protect feature, which allows attackers to gain privileges via a crafted application, aka Android internal bug 28821253 and Qualcomm internal bug CR580567.

9.3CVSS7.5AI score0.00145EPSS
Total number of security vulnerabilities7550