8153 matches found
CVE-2023-20918
CVE-2023-20918 affects the Android Framework, specifically getPendingIntentLaunchFlags in ActivityOptions.java. The issue is an elevation of privilege due to a confused deputy, requiring no user interaction. Exploitation vectors are not detailed in the provided documents, but the Android Security...
CVE-2023-21102
CVE-2023-21102 is a local EoP vulnerability in the Android kernel related to a bypass of shadow stack protection in __efi_rt_asm_wrapper of efi-rt-wrapper.S. The issue enables local privilege escalation without user interaction, as documented in upstream kernel and Android May 2023 bulletin entri...
CVE-2023-21085
CVE-2023-21085 involves Android’s System component where a missing bounds check in function nci_snd_set_routing_cmd (in file nci_hmsgs.cc ) can cause an out-of-bounds write. This flaw could enable remote code execution with no privileges and no user interaction, by an attacker in proximal/adjacen...
CVE-2019-2228
CVE-2019-2228 describes an out-of-bounds read in cups: array_find in array.c, caused by an incorrect bounds check. This can lead to local information disclosure through the printer spooler, with no additional execution privileges required and no user interaction. The vulnerability affects multipl...
CVE-2023-20928
CVE-2023-20928 : A use-after-free in binder_vma_close of binder.c enables local privilege escalation due to improper locking. Exploitation requires no user interaction; impact is described as local escalation of privilege with high severity. Affected reference material cites upstream kernel chang...
CVE-2020-0423
CVE-2020-0423 is a use-after-free in the Android/Linux binder driver (binder_release_work in binder.c) caused by improper locking. It enables local privilege escalation with no extra user interaction required. The description appears consistently across multiple connected sources (e.g., Astra Lin...
CVE-2015-1805
CVE-2015-1805 covers a local elevation/DoS flaw in the Linux kernel where the pipe_read/pipe_write paths in fs/pipe.c mishandle side effects from failed __copy_to_user_inatomic and __copy_from_user_inatomic calls. The issue permits a local user to crash the system or potentially gain privileges v...
CVE-2019-2182
CVE-2019-2182 is an Android/Linux kernel vulnerability in the MMU/arm64 memory management path. The issue is a race condition that can leave kernel text and rodata pages writable, enabling local privilege escalation without user interaction. The description in connected advisories confirms the ro...
CVE-2024-29745
CVE-2024-29745 affects Google Pixel devices in the bootloader component, with an information-disclosure flaw caused by uninitialized data. The NVD entry describes local information disclosure without extra privileges or user interaction. The Pixel Update Bulletin notes this vulnerability as poten...
CVE-2024-40675
CVE-2024-40675 affects Android: a vulnerability in Intent.java -> parseUriInternal can loop infinitely due to input validation issues, causing local DoS without extra privileges. Public sources in the provided connected docs confirm the issue and note patch status varies: Nessus lists it as an...
CVE-2019-9448
CVE-2019-9448 affects the Android kernel FingerTipS touchscreen driver. It is an out-of-bounds write due to a missing bounds check, enabling local escalation of privilege to System, with no user interaction required. The Pixel update bulletin indicates this issue is addressed by patches in 2019-0...
CVE-2024-43093
CVE-2024-43093 affects the Android Framework component ExternalStorageProvider.java, where a bypass of a file-path filter can occur due to incorrect Unicode normalization. The root issue can allow local escalation of privilege without extra execution privileges, with exploitation requiring user i...
CVE-2016-0705
CVE-2016-0705 is a vulnerability in OpenSSL where the dsa_priv_decode function can double-free memory when processing malformed DSA private keys, potentially enabling a denial of service or memory corruption. Affected OpenSSL versions are 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g. Remediation i...
CVE-2019-9449
The CVE-2019-9449 entry affects the Android kernel FingerTipS touchscreen driver. It describes a possible out-of-bounds read caused by a missing bounds check, leading to local information disclosure with system execution privileges required. No user interaction is needed for exploitation, and exp...
CVE-2019-9447
CVE-2019-9447 affects the Android kernel FingerTipS touchscreen driver. The root cause is a use-after-free due to improper locking in the touch driver, enabling local escalation of privilege with System execution privileges required; exploitation does not require user interaction. Public referenc...
CVE-2019-9454
CVE-2019-9454 affects the Android kernel, specifically the i2c driver, where an out-of-bounds write could corrupt memory. This leads to local escalation of privilege with SYSTEM execution privileges required; no user interaction is needed for exploitation. Public references describe the vulnerabi...
CVE-2019-9450
The CVE-2019-9450 issue affects the Android kernel FingerTipS touchscreen driver. The vulnerability is a memory corruption caused by a race condition in the touch driver, enabling local escalation of privilege with System execution privileges required; exploitation does not require user interacti...
CVE-2022-20008
CVE-2022-20008 affects the Android kernel via mmc_blk_read_single in block.c, where uninitialized data can allow reading kernel heap memory. This enables local information disclosure when reading from an SD card that triggers errors, with no additional privileges and no user interaction required....
CVE-2019-9275
In the Android kernel, the MNH driver contains a use-after-free caused by improper locking, enabling local escalation of privilege to the System level with no user interaction required. The issue is officially documented as CVE-2019-9275 and is listed in the Pixel 2019-09-01 bulletin as a Moderat...
CVE-2019-9442
CVE-2019-9442 affects the Android kernel MNH driver. The issue is memory corruption due to a use-after-free, enabling local elevation of privilege with System privileges required. User interaction is not needed for exploitation. The vulnerability is documented across multiple sources (NVD, RH, CN...
CVE-2019-9426
CVE-2019-9426 affects the Android kernel Bluetooth, where a missing bounds check can cause an out-of-bounds write. This vulnerability can enable local escalation of privilege to System level without user interaction. The issue is documented across multiple sources (Android/Bluetooth context, Red ...
CVE-2019-9445
The CVE-2019-9445 entry describes a flaw in the Android kernel F2FS driver: an out-of-bounds read due to a missing bounds check, enabling local information disclosure with kernel privileges and no user interaction required. Connected Nessus advisories and Debian/Unity Linux advisories confirm the...
CVE-2020-0431
CVE-2020-0431 refers to an out-of-bounds write in the kernel’s keyboard.c function kbd_keycode, caused by a missing bounds check. The vulnerability could enable local privilege escalation without user interaction. Public connected advisories ( MiracleLinux AXSA:2021-2148:12 and Unity Linux UTSA-2...
CVE-2016-10229
The CVE-2016-10229 issue affects the Linux kernel’s UDP handling: udp.c in versions before 4.5 contains an unsafe second checksum calculation when a recv call uses MSG_PEEK, enabling remote code execution. Reports and advisories (e.g., ALAS-2017-832, Alpine, Debian, Broadcom/Big-IP advisories) co...
CVE-2020-0305
CVE-2020-0305: A use-after-free due to a race in cdev_get of char_dev.c on Android 10 could allow local privilege escalation. Exploitation requires local access; no user interaction. The available connected documents confirm the vulnerability and affected product (Android-10), but do not specify ...
CVE-2017-0782
CVE-2017-0782 is a remote code execution vulnerability in Android Bluetooth PAN (Personal Area Networking) via the BNEP high-level configuration, causing memory corruption and allowing full device compromise without user interaction. It affects Android versions 4.4.4 through 8.0 (per the CVE desc...
CVE-2018-5848
CVE-2018-5848 concerns the Linux kernel function wmi_set_ie(), where unsigned integer overflow in length validation can lead to a buffer overflow when processing the ie_len argument. The description across connected Nessus entries ties this to memory corruption and potential system crash, affecti...
CVE-2023-21237
CVE-2023-21237 affects Android Framework UI logic in NotificationContentInflater.java (applyRemoteView) that can hide a foreground service notification due to misleading or insufficient UI, enabling local information disclosure without extra privileges. Public sources confirm impact on Android 13...
CVE-2021-39685
CVE-2021-39685 affects the Linux kernel USB Gadget subsystem, with an out-of-bounds write caused by an incorrect flag check in several gadget setups. The issue allows local privilege escalation (no user interaction required) and can lead to information disclosure or DoS as described in upstream n...
CVE-2024-29748
CVE-2024-29748 is an Android Pixel privilege-escalation vulnerability affecting Pixel firmware. Root cause described as a logic error allowing local escalation of privilege without extra execution privileges; exploitation requires user interaction. CVSSv3.1 base score 7.8 (HIGH) with LOCAL access...
CVE-2019-9232
CVE-2019-9232 affects libvpx with an out-of-bounds read due to a missing bounds check, enabling remote information disclosure without privileges and without user interaction. The Connected documents corroborate libvpx as the affected component and cite multiple vendor advisories (ALAS2-2020-1558,...
CVE-2022-23432
CVE-2022-23432 records an improper input validation in the SMC_SRPMB_WSM handler of RPMB ldfw, before SMR Feb-2022 Release 1, that allows arbitrary memory writes and code execution. Affected: RPMB ldfw/SMSC SRPMB WSM handler (pre-Release 1 Feb-2022). Impact: local attacker could corrupt memory an...
CVE-2017-0852
CVE-2017-0852 is a DoS in Android’s media framework libhevc affecting Android 5.0.2, 5.1.1 and 6.0. The connected sources confirm the flaw in the Media framework (libhevc) and list the affected versions. The Pixel/Nexus bulletin notes that patches addressing this and other issues are included in ...
CVE-2019-2102
CVE-2019-2102 concerns a BLE LTK misconfiguration where a long-term key from the BLE spec example could be used as a hardcoded LTK. The initial description specifies Android as affected, listing Android 7.0 through 9.0, with an attacker in proximity capable of remotely injecting keystrokes on a p...
CVE-2020-0108
CVE-2020-0108 is a local elevation-of-privilege in Google Android. In ServiceRecord.java, a failure to handle an exception in postNotification can bypass foreground service restrictions, allowing a malicious local app to run at elevated privileges without user interaction. Affected Android versio...
CVE-2020-0338
The CVE-2020-0338 entry concerns Android. In AccountManagerService.checkKeyIntent, a permission bypass could allow local information disclosure with the attacker gaining access via the device’s own user context. Public docs (NVD entry) confirm affected products as Android 9/10 with a local attack...
CVE-2024-29779
CVE-2024-29779 is a local elevation of privilege in Android (System component) caused by an unusual root-cause logic issue. No user interaction is required for exploitation. It is addressed in Android patch levels 2024-11-01/2024-11-05 with vendor updates (Android and partner advisories indicate ...
CVE-2017-0589
CVE-2017-0589 is a remote code execution vulnerability in libhevc used by the Android Mediaserver . A specially crafted media file could cause memory corruption during processing, enabling code execution within Mediaserver. Affected Android versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. T...
CVE-2019-9276
CVE-2019-9276 affects the Android kernel’s synaptics_dsx_htc touchscreen driver. It describes a possible out-of-bounds write caused by a use-after-free, enabling local escalation of privilege to SYSTEM without user interaction. Remedies are not detailed in this document, but the Pixel update bull...
CVE-2021-0957
CVE-2021-0957 affects Android 10–12, with the vulnerability located in the NotificationStackScrollLayout.java code path. It enables a local elevation of privilege by bypassing Factory Reset Protection, requiring no user interaction to exploit (local attack surface). Public details in connected so...
CVE-2019-9376
CVE-2019-9376 corresponds to a DoS condition in Android (boot loop) caused by improper input validation in Account.java. Affected products per the CVE entry include Android 8.0, 8.1 and 9. The vulnerability enables local denial of service with no user interaction. Public sources in the connected ...
CVE-2019-2101
CVE-2019-2101 affects the Android kernel as described in the connected advisories. The vulnerability is caused by an out-of-bounds read in the function uvc_parse_standard_control within uvc_driver.c , resulting from improper input validation. This can lead to local information disclosure without ...
CVE-2025-36911
CVE-2025-36911 (WhisperPair) is a vulnerability in Google Fast Pair where devices may accept Key-Based Pairing requests even when not in pairing mode, enabling unauthorized pairing without user interaction. Connected tooling demonstrates practical exploitation: an attacker can obtain a BR/EDR add...
CVE-2019-9245
CVE-2019-9245 details (supported by connected docs): In the Android kernel, the f2fs driver contains a missing bounds check leading to a possible out-of-bounds read. This can cause local information disclosure and requires System privileges for exploitation, with no user interaction needed. The N...
CVE-2022-20210
CVE-2022-20210 describes a bug in the modem parsing NAS messages used by UE and EMM in Android, where a malformed NAS message could cause remote crash leading to DoS or RCE. Connected sources confirm this is a vulnerability in the Android modem stack with critical impact (network attack, no user ...
CVE-2019-9273
CVE-2019-9273 is a local elevation-of-privilege vulnerability in the Android kernel’s synaptics_dsx_htc touchscreen driver, caused by an improper locking leading to a use-after-free. The issue could allow a privileged attacker to gain System execution rights without user interaction. Public detai...
CVE-2019-9274
CVE-2019-9274 affects the Android kernel MNH driver. The issue is an out-of-bounds write caused by a missing bounds check, enabling local privilege escalation to System with no user interaction required. Confirmed details across multiple sources (NVD entry and vendor advisories) describe the MNH ...
CVE-2021-39698
CVE-2021-39698 affects the Android kernel. In aio_poll_complete_work() in aio.c there is a use-after-free that can corrupt memory, potentially enabling local privilege escalation with no extra execution privileges required and no user interaction. The advisory notes the impact as local escalation...
CVE-2017-0861
CVE-2017-0861 is a use-after-free in the Linux kernel’s ALSA subsystem (snd_pcm_info). The fault is in the PCM core and can lead to privilege escalation via local access, as described in multiple advisories (e.g., CentOS/RH patches) and Debian security updates. If exploited, a local attacker may ...
CVE-2018-9363
CVE-2018-9363 is a Linux-kernel vulnerability in the HIDP Bluetooth driver: hidp_process_report can overflow a buffer due to incorrect length handling, potentially causing memory corruption and DoS, with possible remote code execution. Public documents across Debian/Ubuntu/CentOS‑related advisori...