8153 matches found
CVE-2021-39657
CVE-2021-39657 concerns an out-of-bounds read in the Android kernel’s ufshcd_eh_device_reset_handler (ufshcd.c). The issue enables local information disclosure with System privileges required, and does not require user interaction to exploit. The provided connected documents reiterate the same de...
CVE-2021-39716
CVE-2021-39716 is present in multiple feeds. The Pixel Update Bulletin categorizes it under Modem with type ID and Moderate severity, indicating a Modem-related issue in Pixel devices; remediation is via Google’s 2022-03-05 patch level. However, the NVD entry lists the affected component as Andro...
CVE-2021-39733
CVE-2021-39733 affects the Android kernel audio path (audiometrics.c) via amcs_cdev_unlocked_ioctl. The vulnerability is a possible out-of-bounds write caused by improper input validation, which could enable local elevation of privilege to SYSTEM if exploited. Exploitation is described as local w...
CVE-2022-20437
CVE-2022-20437 affects Android Messaging. The issue is a denial-of-service vulnerability caused by an unauthorized broadcast within Messaging, leading to Local DoS on affected devices. Affected platform: Google Android (Android OS family with Messaging component). Root cause described as a flaw i...
CVE-2022-32619
The CVE-2022-32619 issue is an out-of-bounds write in MediaTek’s keyinstall component caused by an incorrect bounds check, enabling local escalation of privilege with System-level privileges required; exploitation reportedly does not require user interaction. The vulnerability is identified in Me...
CVE-2023-21240
Technical details are not publicly available in the provided connected documents. CVE-2023-21240 is described as a boot loop/resource exhaustion DoS in Policy.java with no exploitation vectors, affected versions, or fixes disclosed here.
CVE-2023-21256
Summary: CVE-2023-21256 concerns Android’s SettingsHomepageActivity.java, where a logic error could let an attacker launch arbitrary activities from Settings, enabling local elevation of privilege. The vulnerability requires user interaction to exploit and is described across multiple sources (NV...
CVE-2023-45775
CVE-2023-45775 describes an out-of-bounds write in CreateAudioBroadcast within broadcaster.cc that enables local privilege escalation without user interaction. Affected component appears in Android source code; vulnerability details are consistent across multiple sources (NVD, Red Hat, CNVD, OSV)...
CVE-2023-45781
CVE-2023-45781 is described across multiple connected sources as an information-disclosure vulnerability in Google Android, caused by an out-of-bounds read in parse_gap_data() within utils.cc. Exploitation requires local access (local Vector) with low privileges and does not require user interact...
CVE-2024-25987
The CVE-2024-25987 entry describes an out-of-bounds write in the pt_sysctl_command function of pt.c due to an incorrect bounds check. This can enable local privilege escalation with system execution privileges needed, and exploitation does not require user interaction. The available documents do ...
CVE-2024-27206
CVE-2024-27206 describes a potential out-of-bounds read caused by a missing bounds check, enabling remote information disclosure without privileges or user interaction. The connected sources reference this issue in the context of Google/Pixel Android security updates, but the provided documents d...
CVE-2024-34741
The CVE-2024-34741 issue concerns Android’s WindowState.java function setForceHideNonSystemOverlayWindowIfNeeded. A logic error could allow message content to be visible on the screensaver when lock-screen visibility is restricted, enabling local elevation of privilege with no extra execution pri...
CVE-2024-49745
CVE-2024-49745: In growData of Parcel.cpp, an out-of-bounds write may allow local privilege escalation without user interaction. Exploitation details are not provided in the documents; no active exploit status is stated. Android security bulletins (2025-01-01 and 2025-01-05 patch levels) include ...
CVE-2018-9552
CVE-2018-9552 affects Android Media Framework (ihevcd_sao_shift_ctb in ihevcd_sao.c). The issue is an out-of-bounds write caused by missing bounds checks, potentially allowing information disclosure. Affected Android versions span 7.0–9 (Android-7.0, 7.1.1, 7.1.2, 8.0, 8.1, 9); exploitation could...
CVE-2019-2008
CVE-2019-2008 affects Android’s Media framework, specifically the AudioFlinger.cpp createEffect path, where a race condition can cause a memory corruption leading to local elevation of privilege. Exploitation requires user interaction, and no extra privileges are needed. The issue impacts Android...
CVE-2020-0422
CVE-2020-0422: Android system/framework vulnerability in NotificationImportExportListener.java due to an unsafe PendingIntent enables local information disclosure of contacts data with no user interaction; the issue is listed under the 2020-10-01/10-05 patch levels in the Android security bulleti...
CVE-2020-0440
CVE-2020-0440 affects Android 11 and is detailed across several sources (NVD entry and related security bulletins). The vulnerability resides in DisplayManagerService.createVirtualDisplay where a missing permission check could allow a trusted virtual display to be created, enabling local elevatio...
CVE-2021-0305
CVE-2021-0305 affects the Android PackageInstaller. The issue is a tapjacking vulnerability caused by an insecure default value, enabling local escalation of privilege with no extra execution privileges, requiring user interaction to exploit. Affected platforms include Android 8.1, 9, and 10. The...
CVE-2021-0393
CVE-2021-0393 affects Android: out-of-bounds write in Scanner::LiteralBuffer::NewCapacity (scanner.cc) caused by an integer overflow. This could allow remote code execution when a malicious PAC file is supplied, without extra privileges and without user interaction. Affected Android versions incl...
CVE-2021-0428
CVE-2021-0428 affects Android 10 and is tied to TelephonyManager.getSimSerialNumber. The issue arises from a missing permission check, enabling a local information disclosure with no user interaction required. Multiple sources (NVD, Red Hat, OSV) confirm the vulnerability and its local attack vec...
CVE-2021-0521
CVE-2021-0521 affects the Android PackageManagerService’s getAllPackages function, enabling local information disclosure of cross-user permissions due to a missing permission check. The impact is information disclosure with no additional execution privileges or user interaction required, i.e., a ...
CVE-2021-0578
CVE-2021-0578 affects the Android WiFi driver (MediaTek components) with an out-of-bounds read caused by a missing bounds check. This could allow remote information disclosure by a nearby attacker without user interaction or additional privileges. Documents do not specify an affected version, exp...
CVE-2021-0601
CVE-2021-0601 : Android Media Framework vulnerability in encodeFrames of avc_enc_fuzzer.cpp enables a possible out-of-bounds write due to a double free, leading to local information disclosure with no special privileges required. Exploitation requires no user interaction. Affected products/versio...
CVE-2021-0887
CVE-2021-0887 describes a leak of kernel heap content in PVRSRVBridgeHeapCfgHeapConfigName due to uninitialized data, enabling local information disclosure without extra privileges or user interaction. This affects Android environments utilizing PowerVR-GPU components and is reflected across mult...
CVE-2021-0952
CVE-2021-0952 affects Android devices (Android 9–12) and stems from a vulnerability in doCropPhoto within PhotoSelectionHandler.java that enables a possible permission bypass via a confused deputy. This could allow local information disclosure of a user’s contacts with no additional execution pri...
CVE-2021-0966
CVE-2021-0966 affects Android 11 and 12. It arises from BuildParcelFields in generate_cpp.cpp, allowing a crafted parcelable to reveal uninitialized memory in a target process and cause local information disclosure across Binder transactions without extra privileges or user interaction. Impact is...
CVE-2022-20153
Summary (CVE-2022-20153) In the Android kernel, the vulnerability occurs in the function rcu_cblist_dequeue of rcu_segcblist.c , where improper locking can cause a use-after-free. This can enable local escalation of privilege with SYSTEM execution privileges required, and exploitation does not re...
CVE-2022-20430
CVE-2022-20430 is mapped to UNISOC components, with the vulnerability labeled as High severity in Telephony. The root cause per provided documents is a missing authorization/permission check in a system service, enabling Local Privilege Elevation. The Android context is indicated, with references...
CVE-2022-42771
Technical details about CVE-2022-42771 are not publicly provided in the supplied documents. The entries reference a WLAN driver race condition causing local DoS, but no vendor, version, or patch information is included here. Monitor for updates.
CVE-2022-44425
CVE-2022-44425 is a UNISOC/ wlan-driver issue described as a missing bounds check in the wlan driver, leading to local denial of service in wlan services. Public sources (NVD/NIST entry) assign a CVSSv3.1 base score of 5.5 (Medium) with LOCAL attack vector, LOW attack complexity, LOW privileges r...
CVE-2022-44438
CVE-2022-44438 affects the Android messaging service (in Unisoc contexts) where a missing permission check can allow a local denial of service in the contacts service without extra privileges. Root cause: inadequate access control in the messaging component. Impact: local DoS as described in mult...
CVE-2023-21254
CVE-2023-21254 affects Android Framework in the getCurrentState path of OneTimePermissionUserManager.java. The issue allows holding one-time permissions after the app is killed due to a logic error, enabling local privilege escalation with no extra execution privileges and without user interactio...
CVE-2023-21366
Technical details (affected products, exact vulnerable component, versions, exploit specifics) are not publicly available in the provided Connected documents for CVE-2023-21366. Monitor for updates.
CVE-2023-48421
CVE-2023-48421 affects Google Pixel GPU driver code: gpu_pixel_handle_buffer_liveness_update_ioctl in private/google-modules/gpu/mali_kbase/platform/pixel/pixel_gpu_slc.c. Root cause is an out-of-bounds write due to improper input validation, enabling local privilege escalation with no extra priv...
CVE-2023-48423
CVE-2023-48423 : The vulnerability is an out-of-bounds write in the function dhcp4_SetPDNAddress of dhcp4_Main.c caused by a missing bounds check. This could enable remote code execution with no additional privileges and without user interaction. Public documents (NVD, OSV) reiterate the same des...
CVE-2024-20056
CVE-2024-20056 affects MediaTek preloader: insecure default value enables local privilege escalation to SYSTEM, with no user interaction required. Patch ALPS08528185/ALPS08528185 issued; details on exploitation not provided in the connected docs.
CVE-2024-20105
Summary (CVE-2024-20105): In the MediaTek m4u component, there is a potential out-of-bounds write due to a missing bounds check. This could enable local escalation of privilege to the System level, with no user interaction required. The CVE is associated with patch ID ALPS09062027 and issue MSV-1...
CVE-2024-20142
CVE-2024-20142 concerns MediaTek MT8893 V5 DA where a missing bounds check in the V5 DA module can cause an out-of-bounds write. The resulting impact is local escalation of privilege if an attacker gains physical access to the device; exploitation requires user interaction. The initial documents ...
CVE-2024-23696
The CVE-2024-23696 issue is tied to the RGXCreateZSBufferKM function in rgxta3d.c, where a use-after-free leads to possible arbitrary code execution and local elevation of privilege in the kernel. Exploitation reportedly requires local access with no extra privileges and no user interaction. Conn...
CVE-2024-23708
CVE-2024-23708 describes an elevation of privilege in Android via a Clipboard/NotificationManager issue. In multiple functions of NotificationManagerService.java, there is a way to access clipboard messages without showing a toast, enabling local escalation of privilege without extra execution pr...
CVE-2024-31339
CVE-2024-31339 affects Google Android: a memory corruption via use-after-free in multiple functions of StatsService.cpp can lead to local escalation of privilege with no user interaction. The issue impacts the Statsd component and is listed in Android Security Bulletin details for 2024-07-01/07-0...
CVE-2018-9489
CVE-2018-9489 affects Android where, upon wifi state changes, WifiStateMachine.sendNetworkStateChangeBroadcast broadcasts an intent that includes detailed wifi network information. The root cause is information disclosure via system broadcasts that do not require execution privileges or user inte...
CVE-2019-2007
CVE-2019-2007 affects Android Audio stack via FifoControllerBase.cpp, where getReadIndex/getWriteIndex allow an out-of-bounds write caused by an integer overflow. This leads to local elevation of privilege in the audio server with no extra user interaction. Affected Android versions include 8.1 a...
CVE-2020-0246
CVE-2020-0246 affects Android Framework code (UiccAccessRule.getCarrierPrivilegeStatus). A missing permission check could allow local information disclosure of EID data without extra privileges; exploitation requires local access. The issue is listed in the 2020-10 Android security bulletin and w...
CVE-2020-0252
CVE-2020-0252 is a memory-corruption (use-after-free) issue affecting the MediaTek Multimedia Processing Driver in Google Android. The Red Hat/Red Hat-derived and CVE catalogs classify it as an Elevation of Privilege (High) vulnerability. The Android security bulletin for 2020-08-01/08-05 lists M...
CVE-2020-0384
CVE-2020-0384 affects Android 8.0–11, with a vulnerability in the Media Framework: In Parse_art of eas_mdls.c, an incorrect bounds check allows an out-of-bounds write in the media extractor, enabling information disclosure. Exploitation requires user interaction and could occur without extra exec...
CVE-2020-0413
The CVE-2020-0413 issue affects Android devices (Android 8.0–11) and is caused by a missing bounds check in gatt_process_read_by_type_rsp within gatt_cl.cc, leading to a possible out-of-bounds read that could disclose memory contents via a remote Bluetooth connection without user interaction. The...
CVE-2020-0449
The CVE affects Android’s Bluetooth stack, specifically the btm_sec_disconnected path in btm_sec.cc. A use-after-free leads to memory corruption that could enable remote code execution in the Bluetooth server, requiring user interaction to exploit. Affected Android versions include 8.0–11 (Androi...
CVE-2020-0470
Summary of CVE-2020-0470 : A heap-based buffer overflow in the Android Media Framework function restoration.c:extend_frame_highbd can cause a out-of-bounds write, leading to remote information disclosure with no full compromise, requiring some user interaction for exploitation. Affected products/...
CVE-2021-0338
CVE-2021-0338 affects Android (Android-10 and Android-11) in the SystemSettingsValidators component. It describes a denial-of-service condition caused by missing bounds checks on UI settings, enabling a local DoS with user-execution privileges. Exploitation is possible without user interaction. M...