8153 matches found
CVE-2021-0474
CVE-2021-0474: Out-of-bounds memory write (heap buffer overflow) in avrc_msg_cback of avrc_api.cc could allow remote code execution without user interaction. Affected Android versions include Android-8.1, Android-9, Android-10, and Android-11. The issue is described as a remote code execution vul...
CVE-2021-0933
CVE-2021-0933 relates to Android Bluetooth pairing flow, where HTML tags could disrupt the consent dialog due to improper input validation in CompanionDeviceActivity.java or DeviceChooserActivity.java. The issue enables remote elevation of privilege by coercing a user into pairing a malicious Blu...
CVE-2021-0954
CVE-2021-0954 is an Elevation of Privilege issue affecting Android’s ResolverActivity. A tapjacking/overlay attack could bypass user interaction and enable local privilege elevation with user interaction required. Affected versions include Android 10 and 11. Public references in the 2021-12 Andro...
CVE-2021-39634
CVE-2021-39634 affects the Android/Linux kernel: the use-after-free in fs/eventpoll.c can enable local privilege escalation with no additional execution privileges or user interaction required. The vulnerability is described across the public CVE entry and Nessus advisories (e.g., UTSA-2026 varia...
CVE-2022-20354
CVE-2022-20354 affects Android 11, 12 and 12L. The issue is in the VPN subsystem (onDefaultNetworkChanged in Vpn.java) and arises from a logic error that can allow disabling VPN, enabling local elevation of privilege with no extra execution privileges required. The impact is described as local Eo...
CVE-2022-20415
CVE-2022-20415 affects Android via a logic error in StatusBarNotificationActivityStarter.java (handleFullScreenIntent) that bypasses the background-start restriction, enabling local elevation of privilege without extra privileges. Affected: Android 10–13 (Android-10,11,12,12L,13). Root cause: inc...
CVE-2022-20454
CVE-2022-20454 affects Google Android. A vulnerability in the fdt_next_tag function of fdt.c can cause an out-of-bounds write due to an integer overflow, potentially enabling local elevation of privilege with SYSTEM rights and no user interaction. Affected Android versions include 10–13. The Andr...
CVE-2022-20551
CVE-2022-20551 affects Android, specifically AudioFlinger.cpp createTrack in Android 12–13. Root cause is a logic error that can allow recording audio without a privacy indicator, enabling local elevation of privilege with System privileges required and no user interaction. Documents consistently...
CVE-2022-23431
CVE-2022-23431 involves an improper boundary check in the RPMB ldfw component prior to SMR Feb-2022 Release 1, as described across multiple sources. The vulnerability allows arbitrary memory write and code execution. Relevant entries from NVD/Red Hat/NCSC-style advisories consistently reference t...
CVE-2023-20948
CVE-2023-20948 affects Android (Android-12/12L/13) with a flaw in AAVCAssembler.cpp: in dropFramesUntilIframe there is a possible out-of-bounds read caused by a heap buffer overflow, leading to remote information disclosure without extra privileges or user interaction. Connections show no publish...
CVE-2023-21089
CVE-2023-21089 affects Android 11–13 and arises from a flaw in ActivityManagerService.startInstrumentation that could keep a foreground service alive when the app is in the background. This enables local escalation of privilege without additional execution privileges, with no user interaction req...
CVE-2023-21098
The CVE-2023-21098 entry affects Android and involves a local elevation of privilege in AccountManagerService.java where a confused deputy could load arbitrary code into the System Settings app. The attached connected exploit notes an ABX injection chain that leverages PackageInstaller.Session an...
CVE-2023-21100
CVE-2023-21100 affects Android’s inflate.c with a heap-buffer overflow causing an out-of-bounds write. This leads to local escalation of privilege without extra execution privileges or user interaction. Affected Android versions include 12, 12L, and 13. The vulnerability is rooted in the inflate ...
CVE-2023-21272
CVE-2023-21272 concerns an elevation of privilege in Android via the readFrom path in the Uri.java implementation. The vulnerability arises from improper input validation in Uri.readFrom, enabling a possible bad URI permission grant with local impact and no extra execution privileges required. Re...
CVE-2023-21276
CVE-2023-21276 affects Google Android: information disclosure via writeToParcel in CursorWindow.cpp caused by uninitialized data. This enables local information disclosure with no extra privileges and no user interaction required. The provided documents state the issue, its root cause, and impact...
CVE-2023-21284
The CVE-2023-21284 issue affects Google Android and is described across multiple sources as a denial-of-service due to incorrect input validation in multiple functions of DevicePolicyManager.java. The vulnerability is local (attack vector: local) with execution privileges and does not require use...
CVE-2017-13177
The CVE-2017-13177 entry concerns a vulnerability in the Android Media Framework where several libhevc functions fail to preserve NEON registers. This can enable remote code execution (RCE) in a privileged process with no required user interaction, affecting Android versions 5.1.1, 6.0, 6.0.1, 7....
CVE-2017-13179
CVE-2017-13179 describes an out-of-bounds write in SoftHEVC caused by a use-after-free in ihevcd_allocate_static_bufs and ihevcd_create. Both ps_codec_obj and ps_create_op->s_ivd_create_op_t.pv_handle reference the same memory, allowing the former to be freed without clearing pv_handle. This c...
CVE-2020-0076
CVE-2020-0076 affects the FPC Iris TZ App in Android. Description: an out-of-bounds write in get_auth_result due to a missing bounds check, enabling local elevation of privilege to System if exploited; exploitation does not require user interaction. Affected product/area: Android kernel component...
CVE-2021-39799
CVE-2021-39799 affects Android (Android-12, Android-12L) in the AttributionSource.java AttributionSource component. The issue is a local elevation of privilege due to improper input validation, enabling a potential permission bypass without extra execution privileges and without user interaction....
CVE-2022-20466
CVE-2022-20466 describes a local information-disclosure flaw in Android where applyKeyguardFlags in NotificationShadeWindowControllerImpl.java could allow observing the user’s password on a secondary display due to an insecure default value. The issue affects Android 10–13 (Android-10, Android-11...
CVE-2022-20469
CVE-2022-20469 affects Android Bluetooth stack. The vulnerability is an out-of-bounds write in avct_lcb_msg_asmbl (avct_lcb_act.cc), caused by a missing bounds check, enabling local privilege escalation over Bluetooth without user interaction. Affected versions include Android-10, Android-11, And...
CVE-2022-42498
CVE-2022-42498 affects Google Pixel cellular firmware (Android kernel) and is caused by a missing bounds check that enables an out-of-bounds write. This can lead to remote code execution with no privileges and no user interaction. The issue is classified as RCE with high impact. Public references...
CVE-2023-21140
CVE-2023-21140 affects Android’s ManagePermissionsActivity.java. The root cause is a missing permission check in onCreate, allowing a local attacker with physical access to bypass factory reset protections and escalate privileges without any user interaction. Impact is described as local EoP with...
CVE-2023-21289
CVE-2023-21289 affects Google Android and is an information-disclosure issue caused by a confused-deputy bypass of a multi-user security boundary. The description in connected records indicates local information disclosure with no extra privileges and no user interaction required. Public referenc...
CVE-2023-45777
CVE-2023-45777 affects Android’s AccountManagerService (checkKeyIntentParceledCorrectly) where a Parcel Mismatch could let an attacker launch arbitrary activities with system privileges, causing local elevation of privilege. Public details consistently describe this as a local, no-auth vulnerabil...
CVE-2024-20125
Summary (CVE-2024-20125) : A missing bounds check in MediaTek’s vdec component may allow an out-of-bounds write, enabling local escalation of privilege if an attacker already has System privileges. The entry indicates exploitation requires no user interaction and specifies a patch: ALPS09046782 (...
CVE-2024-31331
CVE-2024-31331 affects the Android Framework, specifically a logic error in PackageManagerService.java setMimeGroup that can hide the service from Settings. This can enable local elevation of privilege with high impact (confidentiality/integrity/availability). Exploitation requires local access a...
CVE-2018-9389
CVE-2018-9389 affects the Linux kernel IPv6 code path, specifically ip6_append_data in ip6_output.c. The vulnerability is described as a heap-based buffer overflow that could enable local code execution, resulting in privilege escalation with no additional privileges required and no user interact...
CVE-2020-0078
CVE-2020-0078 : In the Android Media framework, the function releaseSecureStops in DrmPlugin.cpp contains an out-of-bounds write due to a missing bounds check. This leads to local escalation of privilege with no additional execution privileges or user interaction required. Affected: Android 9 and...
CVE-2020-0082
The CVE-2020-0082 issue affects Android 10, located in ExternalVibration.java under ExternalVibration, where unsafe deserialization can trigger activation of an arbitrary intent. This enables local escalation of privilege to system_server with no additional execution privileges needed and does no...
CVE-2022-20026
CVE-2022-20026 concerns a Bluetooth out-of-bounds write caused by a missing bounds check. Exploitation would enable local escalation of privilege with no user interaction required, per the provided entries (NVD/Red Hat/PRION variants). The issue is linked to a MediaTek ALPS06126827 patch/ID and i...
CVE-2022-20131
CVE-2022-20131 affects Android (10–12/12L) with a root cause in nci_proc_rf_management_ntf of nci_hrcv.cc, causing an out-of-bounds read that can disclose information remotely without user interaction. The issue is linked to the Android RF management notification path and is mapped to a System/ID...
CVE-2023-20911
CVE-2023-20911 affects Google's Android platform (Android 11–13) and centers on the addPermission path in PermissionManagerServiceImpl.java. The root cause is a risk of failing to persist permission settings due to resource exhaustion, which could enable local elevation of privilege without requi...
CVE-2023-21083
CVE-2023-21083 affects Android, specifically the onNullBinding path in CallScreeningServiceHelper.java. The root cause is a permissions bypass that can enable recording audio without a privacy indicator, allowing local elevation of privilege with user privileges and no user interaction required. ...
CVE-2023-21126
CVE-2023-21126 affects Android 13. The issue arises in MediaControlPanel.java’s bindOutputSwitcherAndBroadcastButton, where an Unsafe Intent can launch an arbitrary activity under SysUI. This enables local elevation of privilege with no required user interaction. The vulnerability is supported by...
CVE-2023-21138
CVE-2023-21138 affects Android 11–13; in CallRedirectionProcessor.java onNullBinding, improper input validation enables a long‑lived connection, allowing local escalation of privilege with user‑level execution and background activity launches. No user interaction required. Exploitation details ar...
CVE-2016-0821
The CVE-2016-0821 issue relates to the LIST_POISON protection in the Linux kernel (include/linux/poison.h) prior to version 4.3. It affected Android 6.0.1 prior to 2016-03-01 and arises because poison values were used without properly accounting for mmap_min_addr, enabling bypass of poison-pointe...
CVE-2020-0071
CVE-2020-0071 affects Android System component on Android 8.0–10. The vulnerability occurs in rw_t2t_extract_default_locks_info (rw_t2t_ndef.cc), where a missing bounds check can cause an out-of-bounds write, enabling remote code execution over NFC without user interaction. Affected products/vers...
CVE-2021-0929
CVE-2021-0929 affects the Android kernel, with a use-after-free in ion_dma_buf_end_cpu_access (ion.c) that could allow memory corruption and local privilege escalation without user interaction. Connected Nessus entries (UNITY_LINUX_UTSA-2026-004442 and 003872) quote the same root cause and impact...
CVE-2022-20166
CVE-2022-20166 refers to a heap-based out-of-bounds write in multiple Android kernel base drivers that can enable local privilege escalation to SYSTEM. The issue requires no user interaction to exploit and is exploited via heap buffer overflow in kernel base drivers, granting local code execution...
CVE-2022-20446
CVE-2022-20446 affects Android Framework (AlwaysOnHotwordDetector). The issue is a missing permission check that allows background microphone access, enabling local privilege escalation with no user interaction. Public docs in the Android bulletin assign this as a Framework EoP issue at patch lev...
CVE-2022-20448
The CVE-2022-20448 issue affects Android (10–13) via the buzzBeepBlinkLocked path in NotificationManagerService.java, enabling data sharing across users due to a permissions bypass and resulting in local privilege escalation without extra execution privileges. The exposed component is Android’s N...
CVE-2022-20455
CVE-2022-20455 affects Android 10–13 (Android-10, Android-11, Android-12, Android-12L, Android-13). In ZenModeHelper.addAutomaticZenRule, a resource-exhaustion path can cause a persistent local DoS with no user interaction and no additional privileges required. Technical details consistently desc...
CVE-2022-20475
CVE-2022-20475 is an Elevation of Privilege vulnerability in Android (affecting Android-11 through Android-13) tied to ResetTargetTaskHelper.java tests. It enables hijacking of apps that set allowTaskReparenting="true" via a confused deputy, leading to local privilege escalation with no additiona...
CVE-2023-21121
CVE-2023-21121 affects Android 11–12 and concerns an input validation issue in the onResume method of AppManagementFragment.java. The underlying problem could allow local elevation of privilege without additional execution privileges or user interaction. Exploitation is described as local (attack...
CVE-2023-21251
CVE-2023-21251 affects the Android Framework, specifically the onCreate path in ConfirmDialog.java . The issue describes an improper input validation that could permit a connection to VNP without user consent, yielding a local elevation of privilege (requires user interaction). The impact is cons...
CVE-2023-35669
CVE-2023-35669 affects the Android Framework (AccountManagerService.java). The issue stems from unsafe deserialization in checkKeyIntentParceledCorrectly, enabling local elevation of privilege by an attacker with local access and no user interaction. The NVD entry lists local access, low attack c...
CVE-2015-5524
CVE-2015-5524 affects Samsung mobile devices running KK (Android 4.4) and later up to 2015-05-13, due to a buffer overflow in datablock_write caused by unvalidated received data. The Samsung internal ID is SVE-2015-4018. The CVSS indicates high severity (CRITICAL in CVSS‑3.1; High in CVSS‑2). Ava...
CVE-2019-2103
CVE-2019-2103 affects Android 9 Framework. It describes a permissions bypass that could allow the Google Assistant to screenshot FLAG_SECURE apps, leading to local information disclosure without user interaction. The Android Security Bulletin lists CVE-2019-2103 under Framework with Type ID and H...