Android Security Vulnerabilities and Issues — Page 144 of Android CVE List

9.3CVSS7.5AI score0.00088EPSS

CVE-2016-3792

CORE/HDD/src/wlan_hdd_hostapd.c in the Qualcomm Wi-Fi driver in Android before 2016-07-05 on Nexus 7 (2013) devices mishandles userspace data copying, which allows attackers to gain privileges via a crafted application, aka Android internal bug 27725204 and Qualcomm internal bug CR561022.

9.3CVSS7.5AI score0.00043EPSS

CVE-2016-3801

The MediaTek GPS driver in Android before 2016-07-05 on Android One devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28174914 and MediaTek internal bug ALPS02688853.

9.3CVSS7.4AI score0.00043EPSS

CVE-2016-3803

The kernel filesystem implementation in Android before 2016-07-05 on Nexus 5X and 6P devices allows attackers to gain privileges via a crafted application, aka internal bug 28588434.

7.1CVSS5.7AI score0.00145EPSS

CVE-2016-3818

libc in Android 4.x before 4.4.4 allows remote attackers to cause a denial of service (device hang or reboot) via a crafted file, aka internal bug 28740702.

CVE•added 2016/09/11 9:59 p.m.•29 views

CVE-2016-3868

The Qualcomm power driver in Android before 2016-09-05 on Nexus 5X and 6P devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28967028 and Qualcomm internal bug CR1032875.

9.3CVSS7.5AI score0.00134EPSS

CVE•added 2016/09/11 9:59 p.m.•29 views

CVE-2016-3878

decoder/ih264d_api.c in mediaserver in Android 6.x before 2016-09-01 mishandles the case of decoding zero MBs, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 29493002.

7.1CVSS5.7AI score0.00406EPSS

CVE•added 2016/10/10 10:59 a.m.•29 views

CVE-2016-3882

Off-by-one error in server/wifi/anqp/VenueNameElement.java in Wi-Fi in Android 6.x before 2016-10-01 and 7.0 before 2016-10-01 allows remote attackers to cause a denial of service (reboot) via an access point that provides a crafted (1) Venue Group or (2) Venue Type value, aka internal bug 29464811...

6.5CVSS6.7AI score0.00208EPSS

CVE•added 2016/09/11 9:59 p.m.•29 views

CVE-2016-3895

Integer overflow in the Region::unflatten function in libs/ui/Region.cpp in mediaserver in Android 6.x before 2016-09-01 and 7.0 before 2016-09-01 allows attackers to obtain sensitive information via a crafted application, aka internal bug 29983260.

5.5CVSS5.7AI score0.00154EPSS

CVE•added 2016/10/10 10:59 a.m.•29 views

CVE-2016-3903

drivers/media/platform/msm/camera_v2/sensor/csid/msm_csid.c in the Qualcomm camera driver in Android before 2016-10-05 on Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, and Android One devices allows attackers to gain privileges via a crafted application, aka Android internal bug 29513227 and Qualcomm inter...

9.3CVSS8AI score0.00059EPSS

CVE•added 2017/08/16 3:29 p.m.•29 views

CVE-2016-5862

When a control related to codec is issued from userspace in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, the type casting is done to the container structure instead of the codec's individual structure, resulting in a device restart after kernel crash occurs.

7.6CVSS6.8AI score0.00059EPSS

CVE•added 2016/10/10 10:59 a.m.•29 views

CVE-2016-6673

The NVIDIA camera driver in Android before 2016-10-05 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 30204201.

9.3CVSS8AI score0.00044EPSS

CVE•added 2016/11/25 4:59 p.m.•29 views

CVE-2016-6716

An elevation of privilege vulnerability in the AOSP Launcher in Android 7.0 before 2016-11-01 could allow a local malicious application to create shortcuts that have elevated privileges without the user's consent. This issue is rated as Moderate because it is a local bypass of user interaction requ...

5.5CVSS5.8AI score0.00041EPSS

CVE•added 2016/11/25 4:59 p.m.•29 views

CVE-2016-6718

An elevation of privilege vulnerability in the Account Manager Service in Android 7.0 before 2016-11-01 could enable a local malicious application to retrieve sensitive information without user interaction. This issue is rated as Moderate because it is a local bypass of user interaction requirement...

5.5CVSS5.6AI score0.00054EPSS

CVE•added 2016/12/13 7:59 p.m.•29 views

CVE-2016-6722

An information disclosure vulnerability in libstagefright in Mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-11-01, and 7.0 before 2016-11-01 could enable a local malicious application to access data outside of its permission levels. This issue is ra...

5.5CVSS5.3AI score0.00091EPSS

CVE•added 2016/11/25 4:59 p.m.•29 views

CVE-2016-6752

An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderat...

5.5CVSS5.1AI score0.00072EPSS

CVE•added 2016/10/31 10:59 a.m.•29 views

CVE-2016-7988

On Samsung Galaxy S4 through S7 devices, absence of permissions on the BroadcastReceiver responsible for handling the com.[Samsung].android.intent.action.SET_WIFI intent leads to unsolicited configuration messages being handled by wifi-service.jar within the Android Framework, a subset of SVE-2016-...

7.8CVSS7.2AI score0.00091EPSS

CVE•added 2018/04/04 6:29 p.m.•29 views

CVE-2016-8486

An information disclosure vulnerability in Qualcomm closed source components. Product: Android. Versions: Android kernel. Android ID: A-28823691.

7.5CVSS6.8AI score0.00594EPSS

CVE•added 2018/09/18 6:29 p.m.•29 views

CVE-2018-11827

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper validation of array index in WMA roam synchronization handler can lead to OOB write.

7.8CVSS7.4AI score0.00026EPSS

CVE•added 2018/09/18 6:29 p.m.•29 views

CVE-2018-11840

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing the WLAN driver command ioctl a temporary buffer used to construct the reply message may be freed twice.

7.8CVSS7.5AI score0.00026EPSS

CVE•added 2018/09/19 2:29 p.m.•29 views

CVE-2018-11893

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing vendor scan request, when input argument - length of request IEs is greater than maximum can lead to a buffer overflow.

7.8CVSS7.5AI score0.00019EPSS

CVE•added 2018/11/27 6:0 p.m.•29 views

CVE-2018-11943

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing fastboot flash command, memory leak or unexpected behavior may occur due to processing of unintialized data buffers.

7.8CVSS7.3AI score0.00018EPSS

CVE•added 2018/12/20 3:29 p.m.•29 views

CVE-2018-11986

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Possible buffer overflow in TX and RX FIFOs of microcontroller in camera subsystem used to exchange commands and messages between Micro FW and CPP driver.

7.8CVSS7.7AI score0.00019EPSS

CVE•added 2018/12/20 3:29 p.m.•29 views

CVE-2018-11988

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Un-trusted pointer de-reference issue by accessing a variable which is already freed.

7.8CVSS7.4AI score0.00016EPSS

CVE•added 2020/04/08 6:15 p.m.•29 views

CVE-2018-21059

An issue was discovered on Samsung mobile devices with N(7.x) and O(8.x) software. There is Clipboard content visibility in the locked state via the emergency contact picker. The Samsung ID is SVE-2018-11806 (September 2018).

7.5CVSS7.6AI score0.00123EPSS

CVE•added 2018/06/12 8:29 p.m.•29 views

CVE-2018-5844

In the video driver function set_output_buffers(), binfo can be accessed after being freed in a failure scenario in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.

7.8CVSS7.2AI score0.00018EPSS

CVE•added 2018/11/14 6:29 p.m.•29 views

CVE-2018-9531

In AudioSpecificConfig_Parse of tpdec_asc.cpp, there is a possible out-of-bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ...

9.3CVSS8.1AI score0.00212EPSS

CVE•added 2019/04/19 8:29 p.m.•29 views

CVE-2019-2037

In l2cu_send_peer_config_rej of l2c_utils.cc, there is a possible out-of-bound read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android...

7.5CVSS6.9AI score0.00314EPSS

CVE•added 2020/03/24 7:15 p.m.•29 views

CVE-2019-20563

An issue was discovered on Samsung mobile devices with O(8.x) and P(9.0) (with TEEGRIS) software. The SEC_FR trustlet has an out of bounds write. The Samsung ID is SVE-2019-15272 (October 2019).

9.8CVSS9.5AI score0.00147EPSS

CVE•added 2020/03/24 7:15 p.m.•29 views

CVE-2019-20579

An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), and P(9.0) software. Gallery allows attackers to enable Location information sharing from the lock screen. The Samsung ID is SVE-2019-14462 (August 2019).

2.4CVSS4AI score0.00019EPSS

CVE•added 2020/03/24 7:15 p.m.•29 views

CVE-2019-20585

An issue was discovered on Samsung mobile devices with O(8.x) and P(9.0) (with TEEGRIS) software. There is type confusion in the SEC_FR Trustlet, leading to arbitrary code execution. The Samsung ID is SVE-2019-14851 (August 2019).

10CVSS9.6AI score0.00195EPSS

8.8CVSS9AI score0.00409EPSS

CVE-2019-2064

In libxaac, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-116469592

8.8CVSS9AI score0.00409EPSS

CVE-2019-2084

In libxaac there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-117494734

8.8CVSS9AI score0.00409EPSS

CVE-2019-2087

CVE•added 2019/08/20 8:15 p.m.•29 views

CVE-2019-2127

In AudioInputDescriptor::setClientActive of AudioInputDescriptor.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Vers...

7.8CVSS8.3AI score0.00015EPSS

CVE-2019-2148

In libxaac, there is a possible out of bounds read due to a missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-113508105

CVE-2019-2149

CVE-2019-2154

CVE-2019-2155

CVE-2019-2156

6.5CVSS6.5AI score0.00244EPSS

CVE-2019-9318

In libhevc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111764725