Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
GoogleAndroid

7767 matches found

CVE
CVEadded 2022/06/06 6:15 p.m.69 views

CVE-2022-21746

In imgsensor, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06479698; Issue ID: ALPS06479698.

4.4CVSS4.6AI score0.00017EPSS
CVE
CVEadded 2022/04/11 8:15 p.m.69 views

CVE-2022-25832

Improper authentication vulnerability in S Secure prior to SMR Apr-2022 Release 1 allows physical attackers to use locked Myfiles app without authentication.

6.8CVSS6.4AI score0.00019EPSS
CVE
CVEadded 2022/04/11 8:15 p.m.69 views

CVE-2022-26092

Improper boundary check in Quram Agif library prior to SMR Apr-2022 Release 1 allows arbitrary code execution.

7.8CVSS7.8AI score0.00016EPSS
CVE
CVEadded 2022/04/11 8:15 p.m.69 views

CVE-2022-27576

Information exposure vulnerability in Samsung DeX Home prior to SMR April-2022 Release 1 allows to access currently launched foreground app information without permission

4.3CVSS3.8AI score0.00057EPSS
CVE
CVEadded 2022/04/11 8:15 p.m.69 views

CVE-2022-27826

Improper validation vulnerability in SemSuspendDialogInfo prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.

8.5CVSS7.5AI score0.00014EPSS
CVE
CVEadded 2022/12/16 4:15 p.m.69 views

CVE-2022-42503

In ProtocolMiscBuilder::BuildSetLinkCapaReportCriteria of protocolmiscbuilder.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product...

6.7CVSS6.7AI score0.00037EPSS
CVE
CVEadded 2022/12/16 4:15 p.m.69 views

CVE-2022-42532

In Pixel firmware, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-242332610References...

4.4CVSS4.3AI score0.00041EPSS
CVE
CVEadded 2023/03/24 8:15 p.m.69 views

CVE-2023-20980

In btu_ble_ll_conn_param_upd_evt of btu_hcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure in the Bluetooth server with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVer...

5.5CVSS5AI score0.00013EPSS
CVE
CVEadded 2023/03/24 8:15 p.m.69 views

CVE-2023-21015

In getAvailabilityStatus of several Transcode Permission Controllers, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: An...

7.8CVSS7.7AI score0.00004EPSS
CVE
CVEadded 2023/03/24 8:15 p.m.69 views

CVE-2023-21019

In ih264e_init_proc_ctxt of ih264e_process.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13And...

5.5CVSS5.2AI score0.00026EPSS
CVE
CVEadded 2023/03/24 8:15 p.m.69 views

CVE-2023-21044

In init of VendorGraphicBufferMeta, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-25...

4.4CVSS4.3AI score0.00027EPSS
CVE
CVEadded 2023/03/24 8:15 p.m.69 views

CVE-2023-21048

In handleEvent of nan.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-259304053Re...

4.4CVSS4.3AI score0.00027EPSS
CVE
CVEadded 2023/03/24 8:15 p.m.69 views

CVE-2023-21051

In dwc3_exynos_clk_get of dwc3-exynos.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Androi...

6.7CVSS6.6AI score0.0002EPSS
CVE
CVEadded 2023/03/24 8:15 p.m.69 views

CVE-2023-21070

In add_roam_cache_list of wl_roam.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A...

6.7CVSS6.7AI score0.00011EPSS
CVE
CVEadded 2023/03/24 8:15 p.m.69 views

CVE-2023-21072

In rtt_unpack_xtlv_cbfn of dhd_rtt.c, there is a possible out of bounds write due to a buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-257...

6.7CVSS6.8AI score0.00013EPSS
CVE
CVEadded 2023/06/28 6:15 p.m.69 views

CVE-2023-21154

In StoreAdbSerialNumber of protocolmiscbuilder.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernel...

4.4CVSS4.3AI score0.00031EPSS
CVE
CVEadded 2023/12/04 11:15 p.m.69 views

CVE-2023-21163

In PMR_ReadBytes of pmr.c, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.

9.8CVSS8.8AI score0.00112EPSS
CVE
CVEadded 2023/06/28 6:15 p.m.69 views

CVE-2023-21194

In gatt_dbg_op_name of gatt_utils.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure in the Bluetooth server with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Andr...

4.4CVSS4.2AI score0.00023EPSS
CVE
CVEadded 2023/06/28 6:15 p.m.69 views

CVE-2023-21209

In multiple functions of sta_iface.cpp, there is a possible out of bounds read due to unsafe deserialization. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-2...

6.7CVSS6.6AI score0.00027EPSS
CVE
CVEadded 2023/12/04 11:15 p.m.69 views

CVE-2023-21217

In PMRWritePMPageList of TBD, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

9.8CVSS8.7AI score0.00115EPSS
CVE
CVEadded 2023/10/11 8:15 p.m.69 views

CVE-2023-35647

In ProtocolEmbmsGlobalCellIdAdapter::Init() of protocolembmsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation.

9.8CVSS8.2AI score0.00709EPSS
CVE
CVEadded 2023/12/08 4:15 p.m.69 views

CVE-2023-48411

In SignalStrengthAdapter::FillGsmSignalStrength() of protocolmiscadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation.

5.5CVSS5AI score0.00017EPSS
CVE
CVEadded 2023/12/08 4:15 p.m.69 views

CVE-2023-48415

In Init of protocolembmsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5CVSS5.1AI score0.00018EPSS
CVE
CVEadded 2024/04/05 8:15 p.m.69 views

CVE-2024-27232

In asn1_ec_pkey_parse of asn1_common.c, there is a possible OOB read due to a missing null check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5CVSS6AI score0.00014EPSS
CVE
CVEadded 2024/04/05 8:15 p.m.69 views

CVE-2024-29742

In apply_minlock_constraint of dvfs.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5CVSS6AI score0.00022EPSS
CVE
CVEadded 2024/04/05 8:15 p.m.69 views

CVE-2024-29751

In asn1_ec_pkey_parse_p384 of asn1_common.c, there is a possible OOB Read due to a missing null check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5CVSS6.1AI score0.00017EPSS
CVE
CVEadded 2024/04/05 8:15 p.m.69 views

CVE-2024-29755

In tmu_get_pi of tmu.c, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

4.4CVSS6.1AI score0.0001EPSS
CVE
CVEadded 2024/04/05 8:15 p.m.69 views

CVE-2024-29756

In afe_callback of q6afe.c, there is a possible out of bounds write due to a buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

9.8CVSS7.3AI score0.00079EPSS
CVE
CVEadded 2024/06/13 9:15 p.m.69 views

CVE-2024-32898

In ProtocolCellIdentityParserV4::Parse() of protocolnetadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User Interaction is not needed for exploitation.

4.7CVSS6AI score0.00036EPSS
CVE
CVEadded 2024/06/13 9:15 p.m.69 views

CVE-2024-32909

In handle_msg of main.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

8.1CVSS7.1AI score0.00098EPSS
CVE
CVEadded 2024/10/25 11:15 a.m.69 views

CVE-2024-47022

Android before 2024-10-05 on Google Pixel devices allows information disclosure in the ACPM component, A-331255656.

7.5CVSS6.2AI score0.00031EPSS
CVE
CVEadded 2025/01/03 4:15 a.m.69 views

CVE-2024-47032

In construct_transaction_from_cmd of lwis_ioctl.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

7.8CVSS7.5AI score0.00009EPSS
CVE
CVEadded 2024/10/25 11:15 a.m.69 views

CVE-2024-47035

In vring_init of external/headers/include/virtio/virtio_ring.h, there is a possible out of bounds write due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

7.8CVSS7.2AI score0.00013EPSS
CVE
CVEadded 2025/01/03 4:15 a.m.69 views

CVE-2024-53837

In prepare_response of lwis_periodic_io.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

7.8CVSS7.2AI score0.0001EPSS
CVE
CVEadded 2020/02/07 4:15 p.m.68 views

CVE-2014-7224

A Code Execution vulnerability exists in Android prior to 4.4.0 related to the addJavascriptInterface method and the accessibility and accessibilityTraversal objects, which could let a remote malicious user execute arbitrary code.

9CVSS7.5AI score0.02201EPSS
CVE
CVEadded 2016/08/06 10:59 a.m.68 views

CVE-2014-9892

The snd_compr_tstamp function in sound/core/compress_offload.c in the Linux kernel through 4.7, as used in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices, does not properly initialize a timestamp data structure, which allows attackers to obtain sensitive information via a crafted applica...

5.5CVSS5.3AI score0.00162EPSS
CVE
CVEadded 2017/01/13 4:59 p.m.68 views

CVE-2016-8467

An elevation of privilege vulnerability in the bootloader could enable a local attacker to execute arbitrary modem commands on the device. This issue is rated as High because it is a local permanent denial of service (device interoperability: completely permanent or requiring re-flashing the entire...

5.5CVSS6.2AI score0.00021EPSS
CVE
CVEadded 2017/12/05 7:29 p.m.68 views

CVE-2017-14904

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a crafted binder request can cause an arbitrary unmap in MediaServer.

7.8CVSS7.1AI score0.00026EPSS
CVE
CVEadded 2017/05/12 8:29 p.m.68 views

CVE-2017-8244

In core_info_read and inst_info_read in all Android releases from CAF using the Linux kernel, variable "dbg_buf", "dbg_buf->curr" and "dbg_buf->filled_size" could be modified by different threads at the same time, but they are not protected with mutex or locks. Buffer overflow is possible on ...

7CVSS6.6AI score0.00031EPSS
CVE
CVEadded 2024/12/05 12:15 a.m.68 views

CVE-2018-9439

In __unregister_prot_hook and packet_release of af_packet.c, there is apossible use-after-free due to improper locking. This could lead to localescalation of privilege in the kernel with System execution privilegesneeded. User interaction is not needed for exploitation.

7.8CVSS6.9AI score0.00011EPSS
CVE
CVEadded 2019/06/19 9:15 p.m.68 views

CVE-2018-9563

In llcp_util_parse_cc of llcp_util.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-7.0 Android-7.1.1...

7.1CVSS5.9AI score0.00131EPSS
CVE
CVEadded 2019/02/28 5:29 p.m.68 views

CVE-2019-2000

In several functions of binder.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-...

7.8CVSS7.8AI score0.00889EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.68 views

CVE-2019-2072

In libxaac there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-116117112

8.8CVSS9AI score0.00409EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.68 views

CVE-2019-9367

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112106425

7.5CVSS7.2AI score0.00312EPSS
CVE
CVEadded 2021/01/11 9:15 p.m.68 views

CVE-2020-27059

In onAuthenticated of AuthenticationClient.java, there is a possible tapjacking attack when requesting the user's fingerprint due to an overlaid window. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Prod...

7.8CVSS7.8AI score0.00081EPSS
CVE
CVEadded 2022/03/30 4:15 p.m.68 views

CVE-2021-39759

In libstagefright, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-180200830

7.8CVSS7.9AI score0.00015EPSS
CVE
CVEadded 2022/04/11 8:15 p.m.68 views

CVE-2022-20063

In atf (spm), there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS06171715; Issue ID: ALPS06171715.

6.9CVSS6.6AI score0.00011EPSS
CVE
CVEadded 2022/06/15 2:15 p.m.68 views

CVE-2022-20169

Product: AndroidVersions: Android kernelAndroid ID: A-211162353References: N/A

7.5CVSS7.4AI score0.00123EPSS
CVE
CVEadded 2022/08/11 3:15 p.m.68 views

CVE-2022-20406

Product: AndroidVersions: Android kernelAndroid ID: A-184676385References: N/A

7.5CVSS7.4AI score0.00123EPSS
CVE
CVEadded 2022/08/11 3:15 p.m.68 views

CVE-2022-20407

Product: AndroidVersions: Android kernelAndroid ID: A-210916981References: N/A

7.5CVSS7.4AI score0.00113EPSS
Total number of security vulnerabilities7767