8153 matches found
CVE-2022-48463
CVE-2022-48463 affects the wifi service with a missing bounds check that enables an out-of-bounds write. This can lead to local denial of service without extra privileges (CVSS: LOCAL, LOW attack complexity, ALLOWs LOCAL access; impact is Availability HIGH). No concrete fixes or affected versions...
CVE-2023-20681
CVE-2023-20681 affects adsp with a possible out-of-bounds write due to improper input validation, enabling local escalation of privilege with SYSTEM privileges. Exploitation requires no user interaction; no public exploit details are provided in the connected documents. Patch ALPS07696134 (Issue ...
CVE-2023-20686
CVE-2023-20686 describes a race-condition in the display DRM path that enables a double-free vulnerability, potentially enabling local privilege escalation with SYSTEM privileges. The issue is described consistently across sources (NVD/Red Hat citations) as requiring no user interaction to exploi...
CVE-2023-20690
The CVE-2023-20690 entry concerns the WLAN firmware, where an integer overflow can cause a system crash and remote denial of service without authentication or user interaction. Affected component: WLAN firmware (MediaTek context implied by references). Root cause: integer overflow in the WLAN fir...
CVE-2023-20824
CVE-2023-20824 affects duraspeed components (MediaTek context) and is caused by a missing permission check, enabling local information disclosure without extra privileges or user interaction. The vulnerability is described across multiple sources (including Red Hat and NVD records) and is associa...
CVE-2023-20851
CVE-2023-20851 affects stc with a race-condition leading to an out-of-bounds read and local escalation of privilege. Impact requires System execution privileges and user interaction for exploitation, per multiple feeds. A patch is available (Patch ID ALPS08048635; Issue ID ALPS08048635). Exploita...
CVE-2023-21300
Summary: CVE-2023-21300 affects Android’s PackageManager and arises from a side-channel information disclosure that allows a local attacker to infer whether an app is installed without query permissions. This is described as a local information disclosure with no additional execution privileges r...
CVE-2023-21308
CVE-2023-21308 : In Composer, a missing bounds check allows an out-of-bounds read which could enable local escalation of privilege without user interaction. Exploitation details/affected versions are not disclosed in the provided documents. No patch/remediation information is included here. If ex...
CVE-2023-30864
Publicly available documents provided here do not contain concrete technical details (affected version, component specifics, exploit info). Technical specifics are not publicly disclosed in the supplied sources. Monitor for updates.
CVE-2023-30937
CVE-2023-30937 describes a missing permission check in the telephony service that could allow local information disclosure with no extra privileges. Documents confirm this flaw affects the telephony component (noted in Red Hat/NVD records) and is associated with UNISOC chipsets/telephony implemen...
CVE-2023-30942
CVE-2023-30942 is described across multiple connected feeds as a vulnerability in a telephony service where a missing permission check can lead to local information disclosure without requiring extra execution privileges. Reported impact is local disclosure (confidentiality) with no exploitation ...
CVE-2023-32859
CVE-2023-32859 describes a classic buffer overflow in the Meta module (appearing in MediaTek chip context) caused by a missing bounds check. This could enable local escalation to SYSTEM privileges without user interaction. Exploitation details are not provided in the documents. A patch is identif...
CVE-2023-32865
The CVE-2023-32865 issue is in the display drm component (reported across MediaTek-related advisories and Red Hat advisories). It stems from an incorrect bounds check that enables an out-of-bounds write, potentially allowing local escalation of privilege with SYSTEM execution privileges. Exploita...
CVE-2023-32869
The CVE-2023-32869 vulnerability is in the MediaTek Display DRM component and is caused by a missing bounds check, enabling an out-of-bounds write. This could allow local escalation of privilege with System execution privileges, and no user interaction is required for exploitation. Documents cons...
CVE-2023-33895
CVE-2023-33895 affects the fastDial service. The root cause is a missing permission check which can cause local information disclosure without requiring additional execution privileges. Multiple sources (NVD, Red Hat, CVE lists) describe the impact as local information disclosure; exploitation st...
CVE-2023-33897
CVE-2023-33897 affects libimpl-ril and is caused by a missing bounds check that leads to an out-of-bounds write. This can result in local denial of service with SYSTEM privileges required. The available documents confirm the vulnerability and its impact but do not provide specifics on affected pr...
CVE-2023-38447
CVE-2023-38447 affects vowifiservice. Connected documents confirm a missing permission check in vowifiservice as the root cause, enabling a local denial of service with no additional execution privileges. Impact is described as DoS on the local host; no remote code execution or privilege escalati...
CVE-2023-38465
CVE-2023-38465 affects the ims service, with a missing permission check that could lead to local information disclosure. The CVSSv3.1 base score is 5.5 (Privileges Required: Low, Attack Vector: Local, Confidentiality Impact: High, no impact on integrity/availability). Connected sources confirm th...
CVE-2023-42638
The CVE concerns the validationtools component and a missing permission check that could allow local information disclosure without additional execution privileges. The NVD entry assigns CVSS v3.1 base score 5.5 (Medium) with local attack vector and high confidentiality impact. Connected advisori...
CVE-2023-42722
CVE-2023-42722 concerns a use-after-free in the camera service that enables local privilege escalation to System level due to a logic error. Documented across multiple sources (e.g., UNISOC-related entries and Red Hat/NVD/CVE records) indicate it affects camera service; attack is local, with no u...
CVE-2023-42726
CVE-2023-42726 affects TeleService components (UNISOC/chipset context) with an out-of-bounds read caused by a missing bounds check. The consequence stated across sources is a local denial-of-service scenario, potentially tied to the ability to execute with system privileges. No concrete product v...
CVE-2024-20121
CVE-2024-20121 concerns a possible out-of-bounds write in KeyInstall caused by a missing bounds check. The vulnerability could allow local escalation of privilege with System execution privileges required, and no user interaction is needed for exploitation. Technical details across sources consis...
CVE-2024-49731
CVE-2024-49731 affects Wear OS on Pixel Watch during setup, where a logic error in apk-versions.txt can corrupt telemetry opt-in settings on other watches. Impact stated: local privilege escalation without additional execution privileges; user interaction is required to exploit. Documents consist...
CVE-2025-32322
CVE-2025-32322 concerns a vulnerability in the Wear OS/Android platform involving onCreate in a media projection flow (MediaProjectionPermissionActivity.java). The issue arises from improper input validation that could allow a malicious app to obtain a token enabling unauthorized screen recording...
CVE-2014-9958
CVE-2014-9958 is an elevation of privilege in Qualcomm closed‑source components within Android kernel. The vulnerability affects Qualcomm components integrated in Android devices and is listed in the Android security bulletin with fixes provided by Qualcomm AMSS and Android patch updates (June 20...
CVE-2015-0574
CVE-2015-0574 is described in multiple sources as a file system input validation vulnerability in Qualcomm components used in Android CAF builds on the Linux kernel. The root cause is insufficient validation of filesystem access, which could enable an attacker to execute arbitrary code. Concrete ...
CVE-2015-9060
CVE-2015-9060 affects Qualcomm products with CAF Android builds using the Linux kernel. The issue is a pointer validation flaw in a QTEE system call, as described in the CVE description. The connected documents confirm the root cause (improper pointer validation) and the affected context (Qualcom...
CVE-2016-0831
The CVE-2016-0831 issue affects Android Telephony: the function getDeviceIdForPhone in internal/telephony/PhoneSubInfoController.java does not check the READ_PHONE_STATE permission, enabling an information disclosure vulnerability. Affected are Android 5.x before 5.1.1 (LMY49H) and 6.x before 201...
CVE-2016-10234
CVE-2016-10234 describes an information-disclosure vulnerability in the Qualcomm IPA driver within the Android kernel. The issue could allow a local attacker to access data outside of normal permissions. The CVE is listed under the Android security bulletin with affected devices (Nexus 5X, Nexus ...
CVE-2016-2502
CVE-2016-2502 concerns the Qualcomm USB driver in Android (driver file drivers/usb/gadget/f_serial.c). The issue is a privilege-escalation in Nexus 5X/6P due to processing a large GSER_IOCTL size in the GSER_IOCTL call, enabling a local attacker to gain kernel-level privileges. Affected platforms...
CVE-2016-3760
Technical details for CVE-2016-3760 are not publicly available in the provided documents. Monitoring for updates is recommended.
CVE-2016-3795
CVE-2016-3795 affects the MediaTek power driver in Android on Android One devices prior to 2016-07-05. Root cause: privilege escalation via the MediaTek power driver when processing a crafted application, enabling local attackers to gain elevated privileges. Affected component is the MediaTek pow...
CVE-2016-3803
CVE-2016-3803 affects the Android kernel file system. The vulnerability is an elevation of privilege in the kernel file system on Nexus 5X and Nexus 6P, caused by a flaw in the kernel file system implementation that allows a locally installed malicious app to gain higher privileges. Connected doc...
CVE-2016-3811
CVE-2016-3811 concerns an elevation-of-privilege vulnerability in the Android kernel video driver on Nexus 9 devices, prior to the 2016-07-05 patch level. The issue allows a local attacker with a crafted application to gain kernel privileges due to a bug in the kernel video driver (internal bug 2...
CVE-2016-3859
The CVE-2016-3859 issue affects the Qualcomm camera driver in Android on Nexus 5, 5X, 6, and 6P prior to 2016-09-05. The root cause is an elevation of privilege via a crafted application, allowing a local attacker to gain higher privileges within the device. The Android security bulletin notes th...
CVE-2016-3869
CVE-2016-3869 pertains to the Broadcom Wi‑Fi driver in Android prior to 2016-09-05 on Nexus devices (Nexus 5/6/6P/9/Nexus Player/Pixel C). The vulnerability enables elevation of privilege via a crafted application, exploiting Android internal bug 29009982 and Broadcom internal bug RB#96070. Impac...
CVE-2016-3895
CVE-2016-3895 is an information-disclosure vulnerability in Android Mediaserver. The issue arises from an integer overflow in Region::unflatten (libs/ui/Region.cpp) which could allow a crafted file to cause memory corruption and expose sensitive data. Affected products are Android 6.x and 7.0 pri...
CVE-2016-3907
CVE-2016-3907 is an information-disclosure vulnerability in Qualcomm components (GPU driver, power driver, SMSM Point-to-Point driver, and sound driver) used in Android. A local malicious app could access data outside its permission levels after compromising a privileged process. The issue is doc...
CVE-2016-6693
CVE-2016-6693 describes a vulnerability in the Qualcomm QDSP6v2 driver (msm-ds2-dap-config.c) used on Android. An invalid data length in this driver could allow a remote attacker to trigger a denial of service or cause unspecified impact. The issue affects Android builds prior to 2016-10-05. Publ...
CVE-2016-6695
CVЕ-2016-6695 : Affects the Qualcomm QDSP6v2 driver (sound/soc/msm/qdsp6v2/msm-ds2-dap-config.c) in Android before 2016-10-05. An attacker could cause a denial of service or other unspecified impact via crafted visualizer data length. This entry is part of Qualcomm component vulnerabilities in th...
CVE-2016-8472
CVE-2016-8472 describes an information-disclosure vulnerability in the MediaTek driver on Android. The issue could allow a local malicious application to access data outside its permission levels by exploiting the MediaTek driver after compromising a privileged process. Affected product class is ...
CVE-2016-8486
The CVE-2016-8486 entry describes an information-disclosure vulnerability in Qualcomm closed-source components within Android kernel. Affected product/area: Android kernel with Qualcomm components. Root cause: information disclosure; impact: leakage of data to an attacker with local/proximate acc...
CVE-2017-18695
Samsung mobile devices running KK (4.4), L (5.0/5.1), M (6.0), and N (7.0) are affected. An attacker who controls a subdomain can discover a user’s credentials during an email account login via an EAS Autodiscover packet. The initial sources reference a Samsung security update, but no remediation...
CVE-2018-11893
CVE-2018-11893 is a vulnerability in CAF-based Android WLAN code (Linux kernel) where processing a vendor scan request can overflow a buffer when the input length of request IEs exceeds the maximum. The issue is documented across multiple Android CAF releases (Android for MSM, Firefox OS for MSM,...
CVE-2018-11904
CVE-2018-11904 is a null pointer dereference vulnerability in the Android WLAN stack (CAF/Linux kernel) where asynchronous callbacks may dereference a caller’s local pointer if the caller times out. This enables a local attacker to cause a denial of service. Public connected documents corroborate...
CVE-2018-11908
Technical details (affected products, components, root cause, exploits, or fixes) are not publicly provided in the connected documents; monitor for updates.
CVE-2018-11914
Technical details for CVE-2018-11914 are not publicly available in the provided documents. Monitor for updates.
CVE-2018-11943
CVE-2018-11943 affects CAF Android builds using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android). The issue arises in processing the fastboot flash command, causing memory leaks or unexpected behavior due to handling of uninitialized data buffers. Public references in NVD/CVE r...
CVE-2018-5835
CVE-2018-5835 describes a potential buffer overflow in the Android WLAN stack: when seq_len exceeds CSR_MAX_RSC_LEN, copying keyRSC in __wlan_hdd_cfg80211_add_key() may overflow. This affects Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android). The ...
CVE-2018-5844
CVE-2018-5844 describes a use-after-free in the Qualcomm video driver’s set_output_buffers() where binfo can be accessed after it is freed in a failure path across CAF Android for MSM, Firefox OS for MSM, and QRD Android (Linux kernel). The vulnerability affects the video driver component and has...